Cache Tamper-Proof Method and System on Android
A system for preventing cache tampering based on an Android according to an embodiment of the present invention comprises: a dex2oat, which stores an application in the form of an APK file in an app storage part located within an Android operating system; a zygote running the application based on th...
Saved in:
Main Authors | , , , |
---|---|
Format | Patent |
Language | English Korean |
Published |
31.05.2021
|
Subjects | |
Online Access | Get full text |
Cover
Loading…
Summary: | A system for preventing cache tampering based on an Android according to an embodiment of the present invention comprises: a dex2oat, which stores an application in the form of an APK file in an app storage part located within an Android operating system; a zygote running the application based on the APK file stored in the app storage part; and a cache tamper protection module that stores a first hash value of the application cache file in a hash storage part located in an external environment of the Android operating system based on a first event of storing the APK file in the app storage part, and checks an integrity by comparing the first hash value with a second hash value generated from the cache file stored in the app storage part based on a second event of executing the application. Therefore, the present invention is capable of allowing integrity to be verified more securely from malicious attackers.
본 발명의 실시 예에 따른 안드로이드 기반에서의 캐시 변조 방지 시스템은 애플리케이션을 APK 파일 형태로 안드로이드 운영체제 내에 위치한 앱 저장부에 저장하는 dex2oat, 앱 저장부에 저장된 APK 파일에 기초하여 애플리케이션을 실행하는 zygote 및 APK 파일을 앱 저장부에 저장하는 제1 이벤트에 기초하여 애플리케이션 캐시파일의 제1 해시값을 안드로이드 운영체제의 외부 환경에 위치한 해시 저장부에 저장하고, 애플리케이션을 실행하는 제2 이벤트에 기초하여 제1 해시값을 앱 저장부에 저장된 캐시파일로부터 생성된 제2 해시값과 비교하여 무결성을 확인하는 캐시 변조 방지 모듈을 포함한다. |
---|---|
Bibliography: | Application Number: KR20190150498 |