Enhance the secure messaging app with the NDK (Native Development Kit) as an alternative means of defeating Java extraction.
- [Instructor] When developing Android apps,…we can not only code in Java but also drop down a level…and use native routines written in C or C++,…typically where high performance is required…or where platform-specific features need to be accessed.…Native code routines are supported by Android Studio…which allows developers to call them…through the Java Native Interface, or JNI…and compiles the native code routines…into a separate .so module, which is linked…with the standard app by-code.…
The key security feature of native apps…is that they don't get decompiled as Java code…and an attacker looking to determine their function…has to resort to assembly-level, reverse engineering…in order to analyze them.…This increases the cost of attack substantially.…Let's take a look at how we build an Android app…that has native code routines.…The first thing we do at the Android Studio…startup screen is to tick the C/C++ support box…and open a new project.…Let's call it: Native.…
I'll select…Tools,…Android,…SDK Manager…and I'll select SDK Tools.…
Author
Malcolm Shore
Released
7/20/2017- Understanding Android OS, app, and hardware security components
- Using the Trusted Execution Environment
- Developing Android apps with security in mind
- Analyzing existing applications
- Understanding Android vulnerabilities
- Securing Android apps
- Developing secure enterprise apps
Skill Level Intermediate
Duration
Views
-
Introduction
-
Welcome49s
-
-
1. Android Technology
-
Introducing the Android OS6m 54s
-
Securing Android4m 10s
-
Securing Android apps7m 27s
-
Trusty TEE1m 44s
-
Samsung Knox2m 24s
-
-
2. Developing Android Apps
-
3. Analyzing Android Apps
-
Recovering the Java code4m 44s
-
-
4. Securing Android Apps
-
Basic app hygiene5m 18s
-
Storing data in the sandbox1m 58s
-
Using cryptography2m 8s
-
Adding tamper detection3m 47s
-
5. Advanced Security Development
-
What's new in Android O2m 2s
-
Conclusion
-
Summary1m 15s
-
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.
Share this video
Embed this video
Video: Using the Java Native Interface (JNI) to defeat Java decompilation