2012/4/12 Kostya Vasilyev <[email protected]>: > This is one of those things that can be easily circumvented by a script. > > getPackageManager and checkSignature are easy to identify, and making the > latter return SIGNATURE_MATCH should be really easy.
Do you know by any chance how much protection it would give you if you called them via reflection? I know this is something widely recommended and it makes sense, too, but not really being a Java coder yet (my background is in C/C++ mostly), I can't evaluate just how much more difficult it is to find a call performed via reflection in Java byte code. -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/android-developers?hl=en
