Re: [android-developers] Application checksum at runtime

I don't think this will gain you any more than just checking whether the app is signed with your own cert.  In order to modify an app, the pirate will need to re-sign it with their own cert and since they don't have your private key they can't sign it with yours.  (Note that cert checking is done by comparing SHA hashes anyway.)

On Sun, Sep 19, 2010 at 3:07 PM, Bret Foreman <bret.foreman@gmail.com> wrote:

As an additional anti-pirating strategy, I'd like to compute a
checksum on my application at runtime. Since my app communicates with
a back-end server, I can send the checksum with each message and the
server can deny service to altered apps. Not a complete solution to
piracy by any means, but a fairly easy way to raise the bar.

Anyone know how an app can get access to it's load image at runtime?

--
You received this message because you are subscribed to the Google
Groups "Android Developers" group.
To post to this group, send email to android-developers@googlegroups.com
To unsubscribe from this group, send email to
android-developers+unsubscribe@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/android-developers?hl=en

--
Dianne Hackborn
Android framework engineer
hackbod@android.com

Note: please don't send private questions to me, as I don't have time to provide private support, and so won't reply to such e-mails.  All such questions should be posted on public forums, where I and others can see and answer them.

--
You received this message because you are subscribed to the Google
Groups "Android Developers" group.
To post to this group, send email to android-developers@googlegroups.com
To unsubscribe from this group, send email to
android-developers+unsubscribe@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/android-developers?hl=en