Title: Empirical analysis of anti-reversing schemes for protecting mobile codes in the internet-of-things

Authors: Haehyun Cho; Hyunki Kim; Jongsu Lim; Junghwan Lee; Jeong Hyun Yi

Addresses: School of Computer Science and Engineering, Soongsil University, 369 Sangdo-ro, Dongjak-gu, Seoul, 156-743, South Korea ' School of Computer Science and Engineering, Soongsil University, 369 Sangdo-ro, Dongjak-gu, Seoul, 156-743, South Korea ' School of Computer Science and Engineering, Soongsil University, 369 Sangdo-ro, Dongjak-gu, Seoul, 156-743, South Korea ' School of Computer Science and Engineering, Soongsil University, 369 Sangdo-ro, Dongjak-gu, Seoul, 156-743, South Korea ' School of Software, Soongsil University, 369 Sangdo-ro, Dongjak-gu, Seoul, 156-743, South Korea

Abstract: Java-based Android apps are primarily composed of managed code. Managed codes can be easily modified; therefore many static prevention techniques are applied. However, static prevention techniques can be immobilised by dynamic reverse engineering tools. Reverse engineering tools for such managed code operate using QEMU-based emulator methods. Among the many anti-reversing techniques to detect tampering of the application, schemes that terminate the application when an emulator has been detected are being used. In this paper, we compare and analyse the characteristics of the various schemes used to detect emulator-based reverse engineering tools and report experimental results on the effectiveness of the methods in question.

Keywords: anti-reversing; Android apps; app protection; emulator detection; code protection; mobile codes; internet of things; IoT; dynamic reverse engineering.

DOI: 10.1504/IJSTM.2017.081872

International Journal of Services Technology and Management, 2017 Vol.23 No.1/2, pp.21 - 31

Received: 02 Mar 2015
Accepted: 26 Oct 2015
Published online: 30 Jan 2017 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article