Will in-app purchases actually increase iPhone piracy?

Dominique Bongard thinks so

October 22nd, 2009 - 06:21pm

By Jon Jordan, Contributing Editor

When Apple announced its new free-plus-paid business model, it included a line into the press release about piracy.

"Using In App Purchase in your app can also help combat some of the problems of software piracy by allowing you to verify In App Purchases," it stated.

Hardly a rock solid guarantee is it? 'Help combat some of the problems...'

Indeed, according to iPhone developer Dominique Bongard, who in a previous life worked in anti-piracy protection for pay-TV operators, Apple hasn't changed its security protection for normal paid apps, while enabling free-plus-paid apps might make the situation worse.

The arguments are technical but revolve around how the in-app purchase API works.

Bongard says that because there are no cryptographic challenges or verification steps when it comes to telling the app that there's been a successful in-app transaction, crackers could probably just return a 'fake successful' transaction to the app.

In this way, any jail-broken iPhone could unlock all the paid content from such free apps.

More worryingly, he speculates whether it would be possible to redistribute legitimate transaction logs with cracked applications as there doesn't appear to be a way of locking down in-app purchases to specific devices.

He even thinks it could be technically possible to activate in-app purchases on non-jailbroken devices by manipulating backups.

However, the main underlying issue he points to as being of concern, from a piracy point of view, is the general inexperience of iPhone developers.

"From what I have seen in the API, setting up in-app purchases is pretty complex. Therefore, it is hard for me to expect that most developers will make implementations that are secure. Keep in mind that many iPhone developers can barely put an app together," he explains.

Of course, this isn't helped by the fact that Apple doesn't offer any official methods to detect pirated applications on the iPhone or to securely verify transactions directly in the application.

You can read the full blog post - In-app purchase and the state of iPhone piracy - here.

Jon Jordan

Contributing Editor

A Pocket Gamer co-founder, Jon is Contributing Editor at PG.biz which means he acts like a slightly confused uncle who's forgotten where he's left his glasses. As well as letters and cameras, he likes imaginary numbers and legumes.

HIT Games Conference Istanbul 2024		Apr 18th
Game Job Fair – Spring Edition 2024	Nordic	Apr 18th
Arts DAO Fest 2.0	Middle East	Apr 20th
App Promotion Summit London	Europe	Apr 25th
Esports Future Summit	Middle East	Apr 27th
Dubai GameExpo Summit 2024	Middle East	May 1st
The MENA Games Industry Awards 2024	Middle East	May 2nd
GameDev Atlantic 2024		May 4th

India's PM Modi says gaming industry doesn't need regulation

Multi-million funding to ignite growth for UK games studios

Fortis team boosted by top ex-King, PopCap EA, Microsoft and Warner Bros. Games talent

UK skills crisis prompts call for games industry-led body to tackle key challenges

Rovio cancels Moomin: Puzzle & Design mobile game after two years in soft launch

Epic Games demands Google Play opens up to alternative payment systems after antitrust win

NetEase FPS Blood Strike hits 30 million downloads worldwide

A16Z doubles gaming investment with $600M fund as part of $7.2B fundraise

News

Will in-app purchases actually increase iPhone piracy?

Dominique Bongard thinks so

Top Stories

Week in Views - The search for skills, billion dollar birthdays and terrific transmedia

Get practical tips into key game development tools and methodologies at the Dubai GameExpo Summit

PocketGamer.biz Podcast - DoubleDown Interactive’s Faith Price on lifecycle marketing tips to extend your app’s lifespan

Rovio's Angry Birds environmental campaign comes in to land on Earth Day

India's PM Modi says gaming industry doesn't need regulation

Week in Views - The search for skills, billion dollar birthdays and terrific transmedia

New release roundup: Take That: This is Life, Neopets: Tales of Dacardia, Persona 5: The Phantom X and more

Speaker Spotlight: Xsolla's Chris Meredith on making the most of D2C and today's revenue opportunities

Chart Climbers: Brawl Stars, Legend of Mushroom, Sea of Conquest and more rise up the mobile game revenue rankings

Monopoly GO! celebrates its first birthday and shares its behind-the-scenes story

Events

Dubai GameExpo Summit 2024

The MENA Games Industry Awards 2024

Pocket Gamer Connects Helsinki 2024

HIT Games Conference Istanbul 2024

Game Job Fair – Spring Edition 2024

Arts DAO Fest 2.0

Games Industry Jobs

Popular Stories

46 top mobile games in soft launch: CSR 3, Plants vs. Zombies 3, LEGO Hill Climb Adventures, Candy Crush Blast, and more

Monopoly GO! celebrates its first birthday and shares its behind-the-scenes story

The opportunities and challenges facing alternative app stores

Roblox partners with PubMatic to power video ads

Week in Views - Mobile gets blanked at the BAFTAs, Apple goes retro and Nintendo pulls the plug

Videos

DoubleDown Interactive’s Faith Price On Lifecycle Marketing Tips To Extend Your App’s Lifespan

India’s Gaming Revolution, Opportunities & Challenges, Vamil Doshi, Nazara.

PGBiz on Facebook

Will in-app purchases actually increase iPhone piracy?

Dominique Bongard thinks so

Get Pocket Gamer Biz in your inbox

Top Stories