Obfuscate / Encrypt a String (NSString)

最新推荐文章于 2024-01-08 10:38:05 发布
最新推荐文章于 2024-01-08 10:38:05 发布
阅读量126 收藏
点赞数

Apple Keychain Services offer a secure means to store sensitive information. Through the keychain, all the hardwork is managed for you to store and retrieve content. As powerful as the keychain services are, I was recently tinkering with some code to see if I could obfuscate content within an application.

I had a few strings defined as constants and I was interested to see if there was a painless way to store the values as obfuscated strings, and when running the application, un-obfuscate the strings and use the same within the application.

Using Exclusive-Or (XOR) to Obfuscate an NSString

The basic concept is that for each character in a string, I XOR the value against a key value, replacing the original character with the new XOR’d character. This will create a string that is unrecognizable from the original. To get the original string back, perform the same XOR operation with the same key. The obfuscate method is shown below.

- (NSString *)obfuscate:(NSString *)string withKey:(NSString *)key
{
  // Create data object from the string
  NSData *data = [string dataUsingEncoding:NSUTF8StringEncoding];
 
  // Get pointer to data to obfuscate
  char *dataPtr = (char *) [data bytes];
 
  // Get pointer to key data
  char *keyData = (char *) [[key dataUsingEncoding:NSUTF8StringEncoding] bytes];
 
  // Points to each char in sequence in the key
  char *keyPtr = keyData;
  int keyIndex = 0;
 
  // For each character in data, xor with current value in key
  for (int x = 0; x < [data length]; x++) 
  {
    // Replace current character in data with 
    // current character xor'd with current key value.
    // Bump each pointer to the next character
    *dataPtr = *dataPtr++ ^ *keyPtr++; 
 
    // If at end of key data, reset count and 
    // set key pointer back to start of key value
    if (++keyIndex == [key length])
      keyIndex = 0, keyPtr = keyData;
  }
 
  return [[[NSString alloc] initWithData:data encoding:NSUTF8StringEncoding] autorelease];
}
Test Obfuscation

Pass in the string to obfuscate as well as a key which will provide the characters to use in the XOR process. To un-obfuscate a string, call the method with the obfuscated string and the same key.

Below is a short test of the obfuscation:

NSString *str = @"iPhoneDeveloperTips"; 
NSLog(@"Input string:%@", str);		
 
// Obfuscate string
NSString *obfuscatedStr = [self obfuscate:str withKey:@"+@$"];
NSLog(@"Obfuscated string:%@", obfuscatedStr);	
 
// Run obfuscate again to get the original string
str = [self obfuscate:obfuscatedStr withKey:@"+@$"];
NSLog(@"Final string:%@", str);

The output will look as follows:

Note: The resulting obfuscated string may include non-printable characters, so if you print to the console as shown above, don’t be surprised if the output contains what looks to be spaces or newline characters.

Caveat

For any number of reasons, including the key is stored as part of the application, this approach is by no means a substitution for real encryption. If you have sensitive data you need to protect, use the Keychain services. With that said, there are times when storing a string in a format other than clear text in your application may be of interest.

 

http://iphonedevelopertips.com/ 

weixin_34019144
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
IOS开发指南之Swift位与或异或与取反操作
05-03 317
IOS开发指南之Swift位与或异或与取反操作。
LLVM编写Pass对程序进行obfuscate
白马负金羁
06-03 3709
对程序进行obfuscate在软件安全领域有诸多应用,其直接的目的就是对那些试图进行逆向工程的努力带来一些困扰。本文将介绍如何通过在LLVM中加入相关Pass的方法实现对程序的扰乱
Java/IOS通用异或加解密字符串
24新的起点
05-05 3782
主要介绍了Java中简单的异或加解密算法,并通过Java的异或
iOS异或加密算法
weixin_33722405的博客
01-03 253
废话不多说,直接上代码 /** * 异或加密算法 * * @param sourceData 需要加密的字节流 * @param key 加密的key * * @return 加密后的字节流 */ - (NSData *)encodeData:(NSData *)sourceData withKey:(NSString *)key { NSData *k...
iOS-异或加密
Cheny的博客
03-16 3473
iOS-异或加密原理对待加密数据的每个二进制字节,做异或操作(就是把原来的0变成1,1变成0),从而达到加密的目的。简单实现宏定义(形式上简化代码)#define StringWithData(data) [[NSString alloc] initWithData:(data) encoding:NSUTF8StringEncoding] #define DataWithString(str) [
异或加解密
风轻时听花落的博客
09-12 593
string _Encode(string SrcStr) { string result = ""; string str = SrcStr; size_t pos; vector<string> temp; for (int i = 0; i < str.length(); i++) { string singlechar = str.substr(i,...
obfuscate
03-29
混淆与反混淆 Bash加密器和解密器 $ pkg update && pkg upgrade ...$ npm install -g bash-obfuscate $ pkg install git $ git clone https://github.com/Roslandas/obfuscate $ cd obfuscate $ python2 bash.py
JSO.rar_Dot._obfuscate
09-24
JavaScript Obuscator Obfuscate the JavaScript code. @author Shane Ng <gnenahs at poboxes dot com>
llvm-string-obfuscator:LLVM字符串混淆器
04-14
LLVM字符串混淆器 ...opt -load-pass-plugin=./build/StringObfuscator/libLLVMStringObfuscator.so -passes="string-obfuscator-pass" < hello.bc -o out.bc llc out.bc -o out.s clang -static out.
obfuscate4e混淆插件
05-10
"Obfuscate4e混淆插件"是一款专为Eclipse集成开发环境设计的代码混淆工具,主要用于提升Java项目的代码安全性和难以反编译性。在软件开发中,尤其是商业应用,保护源代码不被轻易阅读和理解是至关重要的,混淆就是一...
OSX图片XOR加密解密
09-24
移动开发资源文件加密解密工具,这工具是将密钥拼接在数据的头部,再用密钥对此数据进行XOR加密(异或加密)。另外,解密就是对上述加密进行解密,输出原本数据。
iOS开发资源文件进行XOR加密(异或加密)
likandmydeer的专栏
09-24 2558
iOS开发资源文件进行XOR加密(异或加密)最近接触对文件进行加密操作,如XOR加密、DES加密、AES加密等。这里我写了一个OSX资源加密工具,方便批量加密文件。文章内容如下: 加密逻辑 工具使用说明 解密逻辑 注意事项 加密逻辑读取文件,先转成NSData类型数据,将密钥拼接到数据的头部,然后再使用密钥对新数据进行一次XOR加密。Created with Raphaël 2.1.0开始读取文件,
iOS 位运算符浅析:与、或、异或、取反、左移、右移
最新发布
RollingPin的博客
01-08 725
iOS开发中可以使用C语言位运算符主要包括六种:与( & )、或( | )、异或( ^ )、取反( ~ )、左移( >> )和右移(
iOS 蓝牙数据BCC(异或校验)计算
Han_SM的博客
06-22 573
+(NSString *)HSMCheckBCCWithHex:(NSString *)hexstring{ int cheack = 0; NSString *needAddStr = @""; for (NSInteger i = 0; i<hexstring.length; i++) { NSString *gzs = [hexstring substringWithRange:NSMakeRange(i,1)]; if ([needAdd...
IOS 异或加密
海阔天空
07-16 3876
-(NSString *)obfuscate:(NSString *)string withKey:(NSString *)key {          NSData* bytes = [string dataUsingEncoding:NSUTF8StringEncoding];          Byte  *myByte = (Byte *)[bytes bytes];     
异或加密原理
热门推荐
ljq550000的专栏
09-16 1万+
异或的运算方法是一个二进制运算: 1^1=0 0^0=0 1^0=1 0^1=1 两者相等为0,不等为1. 对于一个字符来说,都可以用二进制码来表示.如A:01000001 字符的异或就是对每一位进行二进制运算. 用于加密算法时,假设你要加密的内容为A
#include <stdio.h> #include <string.h> #include <stdlib.h> char* reverse(char* s) { int i = strlen(s); int j = i; char* ptr = (char*)malloc(strlen(s) * sizeof(char)); memset(ptr, 0, strlen(s) * sizeof(char)); i--; for (; i >= 0; i--) { ptr[i] = s; s++; } ptr[j] = '\0'; s = ptr; return s; } void obfuscate(void* ptr) { int* p = (int*)ptr; p = (p ^ 0xdeadbeef) + 0x1337; return ptr; } int main() { char str = (char)malloc(200 * sizeof(char)); printf("Enter a string: "); scanf("%s", str); str = (char*)obfuscate((void*)reverse(obfuscate((void*)str)))); printf("Reversed string: %s\n", str); free(str); return 0; } 整理这个代码缩进格式,使其美观容易阅读
06-03
#include ... printf("Enter a string: "); scanf("%s", str); str = (char*) obfuscate((void*) reverse(obfuscate((void*) str)))); printf("Reversed string: %s\n", str); free(str); return 0; }
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值