安卓應用正版盜版識別,安卓正版盜版
安卓應用魚龍混雜,據360互連網資訊安全中心一份2014年調查報告顯示,“平均每款正版app對應26.3個盜版app和4.8個盜版簽名”。如何鑒別盜版?其實很簡單,應用的包名和應用的認證可以唯一確定一款應用。對一款應用解壓後,META-INF目錄下面有RSA尾碼的認證檔案,用java內建的keytool就可以查看認證詳細內容,和正版認證比較即可。
以地鐵跑酷為例:
keytool -printcert -file ditiepaoku/META-INF/IDREAMSK.RSA
Owner: CN=iDreamSky, OU=iDreamSky, O=iDreamSky, L=Shenzhen, ST=Guangdong, C=CN Issuer: CN=iDreamSky, OU=iDreamSky, O=iDreamSky, L=Shenzhen, ST=Guangdong, C=CN
Serial number: 4df190c0
Valid from: Fri Jun 10 11:34:24 CST 2011 until: Sun Jun 02 11:34:24 CST 2041
Certificate fingerprints:
MD5: 49:2E:1F:EF:AD:99:55:34:E9:56:9B:E2:A0:E8:89:DC
SHA1: 24:C0:F2:D7:A3:17:8A:55:31:C7:3C:09:93:A4:67:BE:1A:4A:F0:94
SHA256: A1:FD:F9:F3:21:EA:50:B3:E2:1A:AE:C5:05:59:C4:D1:9D:48:A2:44:B7:80:81:26:A4:7F:E8:6F:2B:61:AF:12
Signature algorithm name: SHA1withRSA
Version: 3
該應用的認證顯示owner為iDreamSky,從字面上看是來在廣東的樂逗http://idreamsky.com。至於是不是真的樂逗還是冒名的,可以從一些安卓加固軟體,安卓殺毒網站上尋找正版認證比對,這裡以梆梆加固提供的找盜版服務來檢查:http://am.bangcle.com/search,第一個正版認證就和上面的一樣,基本可以確定是正版了。進一步可以用aapt命令檢查包名,即可最終卻正是正版。
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
