Wangxin application is an instant messaging software launched by Alibaba Group that can support Windows, Android, and iOS operating systems, and its chat messages are stored in the local folders of smart terminals. In this paper, we study the encryption protocol of the Wangxin application and propose a reverse analysis scheme for the Wangxin application. Since the data encryption such as chat messages are stored in the database, we analyze the encryption mechanism of the local database in detail and give a decryption key extraction method based on dynamic binary instrumentation. Finally, through practical tests, our scheme can accurately extract the decryption key and restore the local database, providing a complete solution for the Wangxin application data forensics.
Access to the requested content is limited to institutions that have purchased or subscribe to SPIE eBooks.
You are receiving this notice because your organization may not have SPIE eBooks access.*
*Shibboleth/Open Athens users─please
sign in
to access your institution's subscriptions.
To obtain this item, you may purchase the complete book in print or electronic format on
SPIE.org.
INSTITUTIONAL Select your institution to access the SPIE Digital Library.
PERSONAL Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.