How to avoid reverse engineering an APK folder resource resource file?

Question

How to avoid reverse engineering an APK folder resource resource file?

I am developing an Android application, this folder assetscontains some password and some error information. I want the hacker not to gain access to any resources, assets or source code from the APK file, mainly assets resources.

How can I achieve this?

I found and thought about the following solutions. Please bring me to the correctness and give your suggestions on this subject.

1) Put every data or files in assets folder in encrypted way.

In this solution, when I need to use data folders with data, I need to do decryption every time to make the application slow.

2) To secure resources, don't include all important resources in the assets folder with APK. Download these resources at the time of application first start up.

This solution is also not suitable for my application, because I want to use my application offline if it will be used the first time or the second time.

3) obfuscation would not protect assets folder data so we can not use that.

.

+4

android android-sdk-tools android-assets

sam_k 19 . '13 10:23

2

, , . , Proguard, , , APK, , APK.

, , , , ? ?

DexGuard, . , .

, .

, , :

https://code.google.com/p/dex2jar/

&

http://jd.benow.ca/

+2

SeanD 14 . '14 11:12

nbe_42 · Accepted Answer · 2013-11-19T10:38:31+0000

Android ! . APK, - .

, - .

, , - . ( , ...)

, :

String myKey = "myEncryptionKey";
byte[] key = myKey.getBytes();

apk ... - :

StringBuilder sb = new StringBuilder();
sb.append(m);
sb.append(y);
...
byte[] key = sb.toString().getBytes();

byte[] key = Base64.decode("esfas09f8as90f8").getBytes();

How to avoid reverse engineering an APK folder resource resource file?

More articles: