Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Android APK countersignature verification method

A signature verification and countersignature technology, applied in user identity/authority verification, electrical components, transmission systems, etc., can solve problems such as non-compliance, easy copying and dissemination, and damage to file structure, and achieve the effect of preventing the harm of malicious applications

Active Publication Date: 2016-12-07
江苏先安科技有限公司
View PDF3 Cites 27 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Self-signed certificates have the following disadvantages: developers can apply for them at will, and self-signed certificates and corresponding private keys are stored in files, which are easy to be copied and spread
However, this approach destroys the file structure of the APK, and the newly added signature file can easily be regarded as a Trojan horse or other files that endanger system security.
Moreover, the format and structure of the added signature files are generally customized, and do not comply with any norms or standard requirements. No matter in terms of friendliness or user's intuitive experience, they are relatively poor. Once the Android version is upgraded, it is easy to lead to various problems

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Android APK countersignature verification method
  • Android APK countersignature verification method
  • Android APK countersignature verification method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0076] In order to facilitate the understanding of those skilled in the art, the present invention will be further described below in conjunction with the embodiments and accompanying drawings.

[0077] Explanation of terms: Self-signed digital certificate: (self signed certificate): The user of the digital certificate is the same as the issuer, that is, the certificate is issued by its own private key.

[0078] Certificate distinguished name (distinguished name): the unique identity of the digital certificate holder.

[0079] Time Stamp: Time stamp is an encrypted credential document, which contains three parts: the summary of the file that needs to be time stamped, the date and time when the time stamp service is accepted, and the digital signature of the time stamp service. It can be understood that time stamp is a variant application of digital signature technology.

[0080] The principle of APK counter-signature is as follows:

[0081] An APK file contains the following...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention proposes an Android APK countersignature verification method. The method comprises the following steps of 1, a developer writes a signature of CERT.SF into a CERT.RSA or CERT.DSA file by using an original private key; 2, a third party applies for a digital certificate from a credible electronic authentication service mechanism, performs countersignature on CERT.SF by using the digital certificate, and adds countersignature information into the CERT.RSA or CERT.DSA file, wherein countersignatures contain signature time; and 3, a native Android system performs verification on an APK, verifies the APK according to a native signature verification method of Android and does not verify the countersignature information; and if the APK is installed through system application software of the third party and native APK signature verification is passed, the countersignatures are further verified in sequence, and if all verifications are passed, APK installation is allowed, otherwise, the APK installation is refused. According to the method, the APK can be countersigned with a plurality of signatures on the premise of not destroying an existing signature verification mechanism of Android and an Android file structure, and any countersignature can be traced; and therefore, the method has a huge value in actual application.

Description

technical field [0001] The invention belongs to an APK signature verification method, in particular to an Android APK counter-signature and verification method. Background technique [0002] Android is a free and open source operating system based on Linux, mainly used in mobile devices, such as smart phones and tablets, led and developed by Google and the Open Handset Alliance. Since the release of the first Android smartphone in October 2008, it has developed rapidly. In the first quarter of 2011, the global market share of Android surpassed that of Symbian for the first time, ranking first in the world. Statistics show that in 2015, the global market share of Android platform mobile phones has reached 53.54%, and in the Chinese market, Android accounted for 80.02% of the market share. [0003] According to statistics from iiMedia Consulting, the number of Android developers in China reached 784,200 in 2011. As of 2012, the number of applications in the Chinese Android m...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L9/32H04L29/06
Inventor 庄昱垚王杰勋赵统一
Owner 江苏先安科技有限公司
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com