DexDefender: A DEX Protection Scheme to Withstand Memory Dump Attack Based on Android Platform

Release Date:2018-10-23 Author:RONG Yu, LIU Yiyi, LI Hui, and WANG Wei Click:

[Abstract] Since Dalvik Executable (DEX) files are prone to be reversed to the Java source code using some decompiling tools, how to protect the DEX files from attackers becomes an important research issue. The traditional way to protect the DEX files from reverse engineering is to encrypt the entire DEX file, but after the complete plain code has been loaded into the memory while the application is running, the attackers can retrieve the code by using memory dump attack. This paper presents a novel DEX protection scheme to withstand memory dump attack on the Android platform with the name of DexDefender, which adopts the dynamic class⁃restoration method to ensure that the complete plain DEX data not appear in the memory while the application is being loaded into the memory. Experimental results show that the proposed scheme can protect the DEX files from both reverse engineering and memory dump attacks with an acceptable performance.

[Keywords] Android; DEX; memory dump; reverse engineering

Download: PDF
relative articles
Persistent Data Layout in File Systems
A Quantum Key Re⁃Transmission Mechanism for QKD⁃Based Optical Networks
Mechanism of Fast Data Retransmission in CU⁃DU Split Architecture of 5G NR
When Machine Learning Meets Media Cloud: Architecture, Application and Outlook
How to Manage Multimedia Traffic: Based on QoE or QoT?
DASH and DASH⁃VR Video Multicast Systems
Adaptive Mobile Video Delivery Based on Fountain Codes and DASH: A Survey
By Visitor
Consumer
Carrier
Query & Report
ECCN Query
Whistleblowing
Privacy Center
For Investors
Announcements
Reports
Links
SDN/NFV Site
SSP Site
About ZTE Contact Us Whistleblowing Legal Statement Cookies Policy Privacy Policy Suggestion
©1998-2024 ZTE Corporation. All rights reserved