SID-HARD-09 — Application Resilience and Anti-Tampering
| Property | Value |
|---|---|
| Owner | platform |
| Category | technical |
| CSF Function | protect |
| Group | System Hardening Controls |
Description
Defense-in-depth measures for hostile execution environments:
(1) Root/jailbreak detection — multiple independent detection mechanisms with varied response types (immediate, delayed, stealthy). (2) Debugger detection — covers all debugging protocols; responds to debugger attachment. (3) Tamper detection — integrity verification of executable files and critical data within the app sandbox. (4) Reverse engineering tool detection — identifies common RE tools on the device. (5) Virtualization and emulator detection — detects non-physical execution environments. (6) Memory tampering detection — detects modifications to code and data in the app's memory space. (7) Code obfuscation and anti-deobfuscation measures. (8) Application-level payload encryption. (9) Server notification on detection of compromised environment.
Browser-based wallet: source-visible by design; obfuscation and anti-debugging have limited applicability. goFF app attestation and wallet-companion provide alternative integrity assurance.
Components
- Wallet Frontend
- Wallet iOS Wrapper
- Wallet Companion
- goFF
Framework Requirements
EUDI Security Requirements: WIN-8.4.3-Sec-07, WIN-8.4.3-Sec-08, WIN-8.4.4-01
FitCEM Wallet Instance: FIT-SR-01