摘要 |
A verification method, client, server and system for an installation package. The method comprises: acquiring a signature value of a first APK in a C language environment (S101); using the signature value of the first APK to perform first encryption processing on a request parameter for requesting a network data, to obtain an encrypted byte stream (S102); sending the encrypted byte stream to a server, for the server to decode the encrypted byte stream by means of a pre-configured signature value of a second APK (S103), wherein the second APK is an original APK; and receiving information returned when the server fails to decode the request parameter and used for identifying the first APK as a tampered APK (S104).By utilizing the method, a verification logic of the installation package can be prevented from being decompiled, and the reliability for verifying the installation package is improved. |