According to a old AppSec talk, they used a third-party security company to impl... | Hacker News

Hacker News .hnnew | past | comments | ask | show | jobs | submit

		rvz on June 18, 2020 \| parent \| context \| favorite \| on: Reverse Engineering Snapchat: Obfuscation Techniqu... According to a old AppSec talk, they used a third-party security company to implement this stuff. They are a customer to a company called ‘Arxan Technologies’ that implements these ‘guards’ in their software. They’re very good at not revealing this, but it came up whilst looking at their private API. These secret keys are there but heavily obfuscated and is nothing more than white-box cryptography which can be bypassed via emulation.

theincredulousk on June 18, 2020 [–]

Worked with Arxan before. They are legit - what is described here is the tip of the iceberg. Haven’t even gotten into in-memory instruction and data encryption. If you’re dumping the binary you’re likely not even seeing all of what is executing at runtime

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact