How to protect iOS bundle files like plist ,image,sqlite,media files

ios iphone bundle protection
Ravindhiran picture Ravindhiran · Mar 1, 2014 · Viewed 8.8k times · Source

I have created sample hello world project and then added Data.plist file to resource folder. Now people can easily get the bundle files by unzipping the .ipa file. Is there any ways to protect the Data.plist file that saved in the application bundle of iPhone app?

 Encryption is a decent method of scrambling the data but i don't know how to implement encription concept.

Do you have any sample code?

enter image description here

    NSString *filePath = [[NSBundle mainBundle] pathForResource:@"Data" ofType:@"plist"];
    NSArray *arrData = [[NSArray alloc]initWithContentsOfFile:filePath];

    NSData *datas = [NSKeyedArchiver archivedDataWithRootObject:arrData];
    [datas writeToFile:filePath atomically:YES];

After extracting IPA file

enter image description here

Answer

Daij-Djan picture Daij-Djan · Mar 1, 2014

  1. encrypt the files on the mac... during deployment:

    FIRST: don't add the files to be encrypted to the target
    e.g. Encryption-Test.plist

    THEN add a shell script phase to your xcode project to use openssl to encrypt&copy the files.
    e.g.
    openssl enc -e -aes-256-cbc -pass pass:asdasd -in $PROJECT_DIR/test/Encryption-Test.plist -out $TARGET_BUILD_DIR/$UNLOCALIZED_RESOURCES_FOLDER_PATH/Encryption-Test.enc

  2. add RNCryptor source files from github to your project. This makes decryption of openSSL encrypted AES files really easy. (Thanks rob!) https://github.com/RNCryptor/RNCryptor (Apple's CCrypt api isn't nice to work with directly)

  3. load the data and decrypt it:

e.g. 

@implementation TestViewController

- (void)viewDidLoad
{
    [super viewDidLoad];

    NSString *path = [[NSBundle mainBundle] pathForResource:@"Encryption-Test" ofType:@"enc"];
    NSData *passEncryptedData =[[NSData alloc] initWithContentsOfFile:path];
    NSString *pass = @"asdasd";

    NSData *dataDecrypted = [RNOpenSSLDecryptor decryptData:passEncryptedData withSettings:kRNCryptorAES256Settings password:pass error:nil];
    id plist = [NSPropertyListSerialization propertyListFromData:dataDecrypted mutabilityOption:NSPropertyListImmutable format:nil errorDescription:nil];

    assert(plist);
    self.text.text = [plist description];
}

@end

added full sample: https://github.com/Daij-Djan/encryptBundleFiles

Related questions

How to access local files within project

I want to add some static files (image, binary, etc...) to my app. I've placed them under a folder named Resources and have added it to my XCode project. Next, I have those files added to the Copy Bundle Resources …

Read More
Copy Folder (w/contents) from bundle to Documents directory - iOS

EDIT: SOLVED Thanks Brooks. Your question led me to keep digging into if the file even existed in my bundle - and it did not! So by using this code (also below): iPhone/iPad: Unable to copy folder from NSBundle …

Read More
iOS: How to use images in custom bundle in Interface Builder?

I have a bundle where i put images in it. The contents are: MyBundle.bundle/images/picture1.png MyBundle.bundle/images/picture2.png I dragged MyBundle.bundle into my project. Now I can see these images in Interface Builder and …

Read More