Abstract: Provided is a method and system for code obfuscation of an application. A method configured as a computer may include receiving an application program package that includes an intermediate language (IL) code generated by compiling code for an application including a plurality of classes and a plurality of methods as a dex file over a network, selecting a protection target class or a protection target method from among the plurality of classes and the plurality of methods, encrypting the selected protection target class or the selected protection target method by retrieving and encrypting an IL code corresponding to the selected protection target class or the selected protection target method from the dex file, and adding decryption information for decrypting the encrypted protection target class or the encrypted protection target method to a secure module that is further included in the application program package.

Abstract: According to various example embodiments, a first binary, i.e., an original binary of an application, and a second binary to be added to the application may be merged in a binary form without having to modify a source code.

Abstract: A non-transitory computer-readable medium stores computer-executable instructions that, when executed by a computer, cause the computer to perform operations including generating a changed optimization file by changing an original optimization file, the original optimization file being an optimization file created at a point in time at which an intermediate language file for an application is loaded; storing the changed optimization file; creating and storing verification information for verifying whether the intermediate language file is changed; determining whether the intermediate language file is changed based on the stored verification information in response to reloading of the intermediate language file; and creating a new optimization file by deleting the changed optimization file or recovering the original optimization file based on the changed optimization file and reusing the original optimization file, based on whether the intermediate language file is changed.

Abstract: A code protection method may include storing, using a processor of a computer, a package file that includes files for an application on a storage device of the computer; transforming, at the processor, a protection target method and/or function selected from a file that includes an execution code among the files, or converting or deleting a library file among the files; regenerating the package file by adding, to the package file, a first protection module file for restoring the transformed protection target method and/or function or a second protection module file for restoring the library file; and providing the regenerated package file over a network.

Abstract: Provided is a method of distributing an application including transmitting, by a distribution server, a signal for requesting metadata to a user terminal where an application is installed; receiving, by the distribution server, a reply including first metadata from the user terminal; determining, by the distribution server, whether the first metadata is valid based on second metadata corresponding to the application; setting a connection with the user terminal to re-install the application on the user terminal if the distribution server determines that the first metadata is not valid; encrypting, by the distribution server, one or more installation files that install the application with a private key; and transmitting the one or more encrypted installation files via the set connection to the user terminal.

Abstract: A file protection method may include receiving a package that includes files for installing and executing an application, adding a protection file for an operation of a file protection module to the package, and providing the package to which the protection file is added over a network. In response to execution of a control command for a desired file that is controlled by the application through a service code of the application at an electronic device on which the application is installed and executed through the package, a protection command included in the file protection module is called and control of the desired file and integrity verification associated with data stored in the desired file are processed in response to the called protection command.

Abstract: Provided is a method, apparatus, system, and non-transitory computer readable medium for extending at least one function of a package file. A function addition method executed at a computer may include storing a package file for an application; extracting, from the package file, a file in which information about a class most initially called in response to execution of the application is set as configuration information of the application; and setting a class name of a new class to an item to which information about the most initially called class is set in the extracted file.

Abstract: Provided is a method and system for code obfuscation of an application. A method configured as a computer may include receiving an application program package that includes an intermediate language (IL) code generated by compiling code for an application including a plurality of classes and a plurality of methods as a dex file over a network, selecting a protection target class or a protection target method from among the plurality of classes and the plurality of methods, encrypting the selected protection target class or the selected protection target method by retrieving and encrypting an IL code corresponding to the selected protection target class or the selected protection target method from the dex file, and adding decryption information for decrypting the encrypted protection target class or the encrypted protection target method to a secure module that is further included in the application program package.

Abstract: According to various example embodiments, a first binary, i.e., an original binary of an application, and a second binary to be added to the application may be merged in a binary form without having to modify a source code.

Abstract: A non-transitory computer-readable medium stores computer-executable instructions that, when executed by a computer, cause the computer to perform operations including generating a changed optimization file by changing an original optimization file, the original optimization file being an optimization file created at a point in time at which an intermediate language file for an application is loaded; storing the changed optimization file; creating and storing verification information for verifying whether the intermediate language file is changed; determining whether the intermediate language file is changed based on the stored verification information in response to reloading of the intermediate language file; and creating a new optimization file by deleting the changed optimization file or recovering the original optimization file based on the changed optimization file and reusing the original optimization file, based on whether the intermediate language file is changed.

Abstract: Provided is a method, apparatus, system, and non-transitory computer readable medium for extending at least one function of a package file. A function addition method executed at a computer may include storing a package file for an application; extracting, from the package file, a file in which information about a class most initially called in response to execution of the application is set as configuration information of the application; and setting a class name of a new class to an item to which information about the most initially called class is set in the extracted file.

Abstract: A file protection method may include receiving a package that includes files for installing and executing an application, adding a protection file for an operation of a file protection module to the package, and providing the package to which the protection file is added over a network. In response to execution of a control command for a desired file that is controlled by the application through a service code of the application at an electronic device on which the application is installed and executed through the package, a protection command included in the file protection module is called and control of the desired file and integrity verification associated with data stored in the desired file are processed in response to the called protection command.

Abstract: A code protection method may include storing, using a processor of a computer, a package file that includes files for an application on a storage device of the computer; transforming, at the processor, a protection target method and/or function selected from a file that includes an execution code among the files, or converting or deleting a library file among the files; regenerating the package file by adding, to the package file, a first protection module file for restoring the transformed protection target method and/or function or a second protection module file for restoring the library file; and providing the regenerated package file over a network.

Abstract: A memory hacking detecting method and a system therefor are provided. The memory hacking detecting method for accurately detecting a level of a hacker (or a cheating user) and action of memory hacking by detecting the memory hacking on a stage-by-stage basis and assigning attributes to each of variables of a program executed on a memory and detecting memory hacking in different ways based on the assigned attributes.

Abstract: Provided is a method of distributing an application including transmitting, by a distribution server, a signal for requesting metadata to a user terminal where an application is installed; receiving, by the distribution server, a reply including first metadata from the user terminal; determining, by the distribution server, whether the first metadata is valid based on second metadata corresponding to the application; setting a connection with the user terminal to re-install the application on the user terminal if the distribution server determines that the first metadata is not valid; encrypting, by the distribution server, one or more installation files that install the application with a private key; and transmitting the one or more encrypted installation files via the set connection to the user terminal.