"Mobile apps are very vulnerable to hacking as the source code of the app is easily exposed by decompilers(reverse engineering tools). AppCAMO-Android protects mobile apps by thoroughly blocking hacking through AppCAMO-Android's static analysis prevention(Code Hardening) technologies and dynamic analysis prevention(RASP : Runtime Application Self Protection) technologies when hackers attempt to hack by static analysis and dynamic analysis. AppCAMO-Android provides more than 20 static analysis prevention technologies and dynamic analysis prevention technologies that comply to OWASP."
Why AppCAMO
Industry's First
4-Layered Protection Technologies
AppCAMO uses 4-layered protection technologies to ensure
proactive defense of your app. It protects your app against hacking by applying
our powerful security technologies including decompile prevention, encryption,
obfuscation and repackaging prevention in a complementary and
hierarchical way.
Layer 1 : Decompile
prevention Technology –
Prevent hackers from decompiling apps
Layer 2 : Encryption
Technology –
Code, String, and Resource
Layer 3 : Obfuscation
Technology –
Class Name, Method Name, and Field Name
Layer 4 : Repackaging Prevention Technology – Even if a hacker breaks through layers 1, 2, and 3, an error occurs when repackaging the app and eventually the hack fails
Fig. 2 is an example of applying decompile prevention technology. Decompile prevention technology prevents reverse engineering of an app with decompiling tools such as Dex2Jar, Jadx, Apktool and Apktool extensions. If a hacker try to decompile the app after applying this technology, an error occurs during decompilation and the decompilation stops or the source code of the app becomes invisible. This is the second most powerful application security technology after code encryption that is the strongest security technology because it encrypts all the source code of the app, and it can block the tampering by preventing the source code from being exposed, and the exposure of sensitive information such as algorithms, how the app works. Since this technology does not affect the execution speed of apps, it is recommended to apply it to all apps by default. When you review application shielding solutions, it is necessary to see if they offer this technology.
|
Fig.2 Application Security
Solution AppCAMO's Before & After applying Decompile Prevention
Technology |
Fig. 3 is an
example of applying string encryption. String encryption technology finds and
encrypts strings in the app's source code, and decrypts them only when the app
is run in a safe environment. You can check strings in the decompiled source
code of the app, and if sensitive values such as server address, API key, user
account, and token are exposed to hackers, secondary damage such as server
attack may occur. Therefore, we recommend that this technology be used by default when you apply an app security solution to
the app.
Fig. 4 is an example of applying repackaging prevention technology. This
technology prevents repackaging by occurring an error when repackaging an app applied
to repackaging prevention technology after decompiling it. This technology can
significantly reduce the tampering of the app.
|
Fig.4
Application Security Solution AppCAMO's Before & After applying
Repackaging Prevention Technology |
Corporate Mobile
Application Security Standard Platform
We built the mobile app security standard platform for large corporates for the first time in the world. AppCAMO is applied to more than 250 apps of major mobile carriers SKtelecom and LGU+ every year.
Stable Use on 70% Korean Smartphones
When a new Android version is released, it is possible to secure
technology stability ahead of any competitors by applying AppCAMO to the
preload apps of SKtelecom and LGU+ before the launch of the smartphone, and
AppCAMO applied apps are stably used on
the smartphones of 35 million subscribers, that is, 70% of smartphones in
Korea.
Android App
Bundle(AAB) Support
Android App Bundle is
a model proposed by Google for efficient application service operation by
reducing the app size. When a user downloads an app, Google Play Store creates and
distributes an APK which is composed of resources and components suitable for
each user's device, reducing the application size and disk allocation size. And
the application installation time is also reduced. AppCAMO can apply more than
20 application security technologies to AAB files as well.
No SDK, No Coding, Ease
of Use by Web Browser
AppCAMO allows users
to intuitively and easily select and apply various application security
technologies through a web GUI, and unlike other solutions, AppCAMO
doesn't require learning time to use the solution such as configuration files
or command lines.
Multiple Applications Management
AppCAMO provides
management features such as user management, keystore management, project
management, task management, bulletin boards, and statistics to enhance the
convenience of application security technologies management. You can manage the
history of applying various application security technologies, so you can
manage the history from the beginning to the latest.
More
than 20 powerful Application Security technologies that comply with OWASP
AppCAMO provides more than 20 security technologies that comply with OWASP(Open Web Application Security Project), and includes static analysis prevention(Code Hardening) technologies and dynamic analysis prevention(RASP: Runtime Application Self Protection) technologies.
Static analysis
prevention(Code Hardening) technologies protect APK files from hacking.
Decompile
Prevention,
Repackaging
Prevention,
Class Name
Obfuscation,
Method Name
Obfuscation,
Field Name
Obfuscation,
Code Encryption,
String Encryption,
Resource Encryption
Hybrid Application(JavaScript Encryption, WebView)
Encryption,
Custom Hybrid
Application(WebView) Encryption,
Debug Information
Removal,
Logcat Log
Removal and more.
Dynamic analysis
prevention(RASP) technologies detect and block hacking attempts while an application
is running.
Tampering Detection,
Debugger Detection,
Root Detection,
Emulator Detection,
Root Hide Detection(Magisk/Magisk Hide Detection),
Frida Detection,
API Hooking
Prevention,
Memory Hacking
Prevention,
Screen Capture
Prevention,
Clipboard Copy
Prevention,
Usage Time Control
and more.
"AppCAMO, Inc.
is a mobile application security company. AppCAMO is also the name of the
application security solution. AppCAMO-Android provides 4 Layered Protection
Technology that fundamentally blocks application hacking, and has world-class
application security technology by providing application hacking detection and
prevention technology even at runtime. We are expanding sales not only in Korea
but also in overseas markets such as Southeast Asia”
If you are interested
in or have any questions about this solution, please contact us below.
Mail:
appcamo@appcamo.com
Phone:
+82-2-6951-3296
www.appcamo.com
Room 516, 5FL, Seoul Forest IT Valley 77, Seongsuil-ro, Seongdong-gu, Seoul 04790, Korea
No comments:
Post a Comment