Supercharge Your Innovation With Domain-Expert AI Agents!

Safety detection method for short message verification code authentication process of Android application program

A technology of SMS verification code and application program, which is applied in the field of security detection of Android application program SMS verification code authentication process, can solve the problems of lack of application program security analysis, failure to cover the SMS verification code authentication process cycle, etc., to improve accuracy , the effect of expanding the detection range

Active Publication Date: 2021-03-16
NANJING UNIV OF SCI & TECH
View PDF6 Cites 5 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the existing analysis technology is mainly oriented to attack defense, lacks the security analysis of the logic design of the application itself, and does not cover the entire process cycle of SMS verification code authentication

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Safety detection method for short message verification code authentication process of Android application program
  • Safety detection method for short message verification code authentication process of Android application program
  • Safety detection method for short message verification code authentication process of Android application program

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0031] combine Figure 4 , an Android application SMS verification code authentication process security detection method, the specific steps are:

[0032] Step 1. Formulate the authentication process model according to the authentication characteristics of the Android application SMS verification code;

[0033] Step 2, analyze the APK files provided by different application programs, and detect the security of the application program credential storage realized by the SMS verification code authentication through the authentication process model;

[0034] Step 3, a debugging tool based on the HTTP protocol, filters and identifies the verification code request message generated by the application program client in the authentication process model, and detects the security of the mobile phone number transfer;

[0035] Step 4, analyzing and comparing the verification codes generated by multiple application servers in response to the verification code request message, and detectin...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides a security detection method for an Android application short message verification code authentication process. The method comprises the following steps: establishing an authentication process model according to authentication characteristics of an Android application short message verification code; analyzing APK files provided by different application programs, and identifying application program credential sensitive parameters realized by short message verification code authentication; then, based on an HTTP debugging tool, filtering and identifying the target communication flow, and detecting the transmission security of the mobile phone number; and then dynamic flow analysis is carried out to identify the operation that the application program server incorrectlygenerates and authenticates the verification code. According to the invention, security guidance can be provided for an application developer to realize short message verification code authentication,and the developer is helped to correctly realize Android application short message verification code authentication.

Description

technical field [0001] The invention relates to the technical field of Android application program communication, in particular to a security detection method for an Android application program short message verification code authentication process. Background technique [0002] In recent years, the Android application program market has developed vigorously. According to relevant statistics, the release of Android application programs has shown an exponential growth. More and more applications provide SMS verification methods to provide users with convenient and fast authentication and login methods, and SMS verification has therefore become the target of attackers. In order to avoid the theft of user identity information and the leakage of privacy, program developers need to study and consider the security issues of SMS verification code authentication methods. The Java file is the source file of the Android application. After the Java file is compiled, it becomes a Class...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04W12/06H04W12/37
Inventor 俞研田穗邓芳伟付安民
Owner NANJING UNIV OF SCI & TECH
Features
  • R&D
  • Intellectual Property
  • Life Sciences
  • Materials
  • Tech Scout
Why Patsnap Eureka
  • Unparalleled Data Quality
  • Higher Quality Content
  • 60% Fewer Hallucinations
Social media
Patsnap Eureka Blog
Learn More

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2025 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com