Viber Communication Security - Bad Request
Viber Communication Security - Bad Request
Viber Communication Security - Bad Request
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Experiments Chapter 3<br />
Android<br />
In Android <strong>Viber</strong> has multiple xml files which all contain little information, in those xml files the<br />
following can be found:<br />
• <strong>Viber</strong> account version number<br />
• A ‘dm_registration’ key number (used for the android market)<br />
• Your ‘device key’ (hash)<br />
• Last registered number (your own number)<br />
• Your <strong>Viber</strong> User ID (hash)<br />
• A ‘Sync hash’<br />
• Last message token ID<br />
• Last mist call log<br />
• Your activation code (the one you get through SMS)<br />
3.1.3 Conclusion of <strong>Viber</strong>’s data stored<br />
Is seems that everything you do with <strong>Viber</strong> gets stored inside a database. <strong>Viber</strong> makes use of the<br />
SQLite database with some xml files for different kind of data. Both Android and iOS need to be<br />
rooted and jailbreaked to gain access to them. All <strong>Viber</strong> databases and files are stored unencrypted<br />
or could be said in normal plaintext. The data in the xml files is used for the configuration of<br />
the application. The data inside the database look like log files and only stores messages plus your<br />
address-book. Photos called attachments in the database are saved in a separated directory. But<br />
there can be concluded that your <strong>Viber</strong> data is easily accessible on your phone both on Android and<br />
iOS.<br />
Database<br />
The databases contain on both os’s all <strong>Viber</strong> contacts but on iOS also your normal address-book can<br />
be found. All messages send and received are stored with tables for your location (if that function<br />
is on). Both databases have a list of calls received and made. It’s also interesting that on Android<br />
every message has his own token and sequence numbers attached to it while iOS only stores the<br />
sequence numbers. Both databases contain a table with summaries on how many message are send<br />
and calls are made. The iOS database also looks better organised than the one on Android. Android<br />
has two more databases than iOS. Maybe they ‘viber_hashes’ database which also can be found<br />
in Android was used in a previous version of <strong>Viber</strong>. Below you can compare how the messages are<br />
stored in both databases:<br />
You can see Android uses the token value while iOS doesn’t. Android further in the table also has<br />
a sequence value which is being filled. But iOS on the other hand only has a sequence value filled<br />
14