Search Unity

  1. Welcome to the Unity Forums! Please take the time to read our Code of Conduct to familiarize yourself with the forum rules and how to post constructively.

iOS - Application server side validation against mods / cracks /jailed versions

Discussion in 'General Discussion' started by cometa93, Feb 3, 2020.

  1. cometa93

    cometa93

    Joined:
    Mar 5, 2014
    Posts:
    35
    Hello, currently we run into a problem of validating our game on the server-side. On Android it's pretty easy as we are just checking our signature on the secured server-side, requests are encrypted so impossible to find our signature. The solution is provided by google, simple and work in 100% against modded/cheated apps.

    iOS, however, no solution to do it, We were thinking about the checksum, but how to check IPA checksum in runtime, and to send it untouched to the server, getting sure that it is not hardcoded by decompiled IPA...

    Please help. We have more modded downloads on iOS ( currently 400 a day ) than from original Appstore, other solutions are not safe and secured against decompilation ... We can't also obfuscate the code as we use runtime models deserialization to communicate between server-client. Which obfuscation is changing


    We just search for a solution to find if our app ( on iOS ) is legal or modded.
     
    cometa93, Feb 3, 2020
    #1

  2. Ostwind

    Ostwind

    Joined:
    Mar 22, 2011
    Posts:
    2,805
    Ostwind, Feb 3, 2020
    #2