Android :: How To Secure Data In Phone App?
Jul 27, 2010
I want to store some small but critical piece of information such as AES keys in my Android application. What would be the recommended way to do this? I do not want to hardcode keys as part of my application. I look at KeyStore but it does not really solve my problem. It can store my keys given that I can provide a password. Then I need to find a secure place to store this password which is same as my original problem. Is there a built in Android class to perform this task? Or should I look for third party libraries? Using NDK is also acceptable for me.
View 1 Replies
Dec 24, 2009
I get the above error message generated by the Moment when attempting to connect to a certain webpage.
View 2 Replies
View Related
Sep 2, 2012
App that tunnels my text and whatsapp message to another android device.
Like this scenario:
3G --> message ( whatsapp or text ) --> android device 1 ( proxy ) --> encrypted -->WIFI ( internet ) --> Android device 2
This way i can send and receive messages trough another android device that acts as an secure message proxy.
View 1 Replies
View Related
Apr 30, 2010
I have a temporary number during shift of provider. When I get my old number with the new provider (3) I will not get a new SIM card. Can I just change number with Wave Secure without changing SIM? I have note registered yet with Wave Secure.
View 2 Replies
View Related
Oct 4, 2010
This may be a real stupid question, but it did cross my mind since I am not familiar with the files/processes used to root the phone with unrevoked. I am a gadget geek, just not a programmer
View 12 Replies
View Related
Oct 2, 2010
I got my free Fascinate last night at Best Buy (upgraded from an old BB Curve). As a Droid newbie, so far I love this phone, except I'm a little disappointed with the "locking pattern" used to secure the phone. Is there another option available to lock the phone similar to using just a regular password?
View 5 Replies
View Related
Mar 30, 2014
I am using WiFi as a Guest with guest password qt my office. But dont want to open/show my ID / mac address or any Detail to administrator.
Q1. Is there any APP which can keep me & my device detail invisible while i am surfing / downloading any file via browser or torrent?
Q2. Gmail etc sites are blocked in WiFi , is there any app which can browse to these URL's.
View 7 Replies
View Related
Jan 28, 2010
Are there any Droid users out there that are having trouble tracking and locking their phone with the Wave Secure? It backed up my info fine but it can't locate or lock my phone in both Firefox and IE. I installed Mobile Defense before I installed Wave Secure to test them both out but I've heard of ppl running them both with no problems.
View 3 Replies
View Related
Jun 4, 2014
We have a work phone for our three shift supervisors to share. Any way or app that would allow us to setup three exchange emails that are each secured by a PIN or password? I've seen that android tablets can now switch users , but I don't think that is available on the phone yet. Phone is a Samsung S4.
View 1 Replies
View Related
Nov 13, 2009
I have been wondering over the last few days since getting an Android phone and trying to configure it to make it at least as productive as my previous smartphone. How secure is the information in a world where we put a large amount of personal info behind google-id and password? This id and pwd is plugged into the phone for functionality. We browse the Android Market for necessary apps provided by complete strangers and click Install. We click OK when caution is raised, with unknowing consequences and taking complete responsibility for the installation. Am I justified in being paranoid with Android model of doing things?
Please read the thread "ActiveSync for Android, Moment?" to understand better why I raise this question.
View 3 Replies
View Related
Aug 5, 2010
i've found very interesting stuff in the internet. according to the site wave secure contained a very major security leak for some months which has been exploited. it allowed hackers to get the users PIN to login to the web central of wave secure. which then gave them access to the private data of the users, let them track the phone, ... Wave Secure still gave no comment about this. I found the blog at Wave Secure Security Vulnerability Report hope it will be fixed soon.
View 1 Replies
View Related
Jan 16, 2010
are there some smarties here that can confirm that PDAnet is safe / secure and doesn't have spyware / adware type capabilities? The reason I ask is because i'll be using it to tether to my laptop. When installing on the laptop...certificate warnings pop up.. the same when installing on droid. (USB debugging warning comes up saying it has to be turned off) which basically means data can be transferred wherever.
View 2 Replies
View Related
Feb 12, 2010
I have a pretty basic helper class that I'm using to do all my Http Get/Post stuff. I'm using HttpGet, HttpPost, and HttpClient from the org.apache.http library. All of my stuff works fine over HTTP, but as soon as I tried to consume a service that works over HTTPS, I get a ClientProtocolException when executing the request. The only message in the exception is "The server failed to respond with a valid HTTP response".
To test, I sent the exact same payload from a browser using a simple html form and Fiddler2 using the RequestBuilder. I've sent invalid and empty payloads and even sent all of the above with and without headers to see if there was something funky about the way the objects were building the request.
Everything I've used in testing gives me a valid 200 status HTTP response. The service just gives me a structure describing the error if I give it something other than what it expects.
Is there something special I need to add to the HttpPost or HttpClient object(s) to tell it to use HTTPS? Do I have to explicitly tell it to use a different port?
I indeed registered the wrong socket factory for https communication. Here is the updated method that I use to create my HttpClient object with the correct socket factory just in case someone searches this kind of problem in the future:
CODE:............................
View 3 Replies
View Related
Mar 5, 2010
Many of my users have requested a password protection for various data elements in my database. Unfortunately, one of my existing features is backing up the database to a public location (SD Card) for data redundancy, so my database isn't secure.
So my question is two-fold.
How can I encrypt or secure a database on android?
How can I store user created passwords on the device in a secure, inaccessible way.
View 2 Replies
View Related
May 31, 2010
Does it count as antivirus? I've been browsing some threads and people say antivirus apps are causing texting to force close and randomly delete all messages. I keep having this problem and was wondering if uninstalling Wave secure would help
View 4 Replies
View Related
May 26, 2010
I find that the tracking on wave secure isn't really that efficient especially since it's now an app with a monthly subscription. The main reason is that the gps tracking on it is really pretty poor in accuracy and this is the main thing I use it for. So are there any alternatives with more accurate tracking on it? ( I mean google maps gives it more accurate than WS)
View 4 Replies
View Related
Jul 29, 2010
For the details read here. all those that thought they would have free usage of wave secure. think again. McAfee - about - McAfee to Acquire Wave Secure
View 37 Replies
View Related
Dec 22, 2009
I was wondering what people thought about each one or which one is better and accurate? I currently have the sprint HTC Hero and running Mobile defense (MD) but not sure if i want to try Wave secure or stay with mobile defense.
View 2 Replies
View Related
Nov 24, 2010
I am developing an Android frontend to a web application using its API. This Android application will expose some extra features if the user is a 'pro'. Therefore I need the Android app to acquire the information whether an account is pro. That is done while getting the token. In other words, when the Android application requests a token to the web application via the API, the web application provides also a flag representing whether the user is a pro.
When the Android app gets that piece of information, it stores it in the SharedPreferences, like this: this.sharedPreferencesEditor.putBoolean(Account.PRO_ACCOUNT, isPro).commit();
Then the Android app reads that value to decide whether a certain feature is available to that user. Now, my question is: is that approach easily hackable? I mean, can some clever user work-around this system and get pro-features even if they are not pro-users? How could do that?
View 1 Replies
View Related
Mar 23, 2010
I've only distributed a few apps by sending .apk files around.I was wondering how Android Market prevents users from distributing a paid application to other people.
View 2 Replies
View Related
Feb 7, 2009
I'm implementing a feature that requires a password, is it safe to store using SharedPreferences.Editor? Is there another recommended way for storing passwords?
View 8 Replies
View Related
Apr 16, 2010
Should this app always stay open? Should I exclude it from the list of apps that close when I clear the task manager? I'm guessing it will take up virtually no memory unless someone tampers with the phone?
View 7 Replies
View Related
Aug 2, 2010
The title was quite blunt - but I'm writing this to warn others about paying for this product. I'm sure it is an excellent product - if you can get it to work. I made the mistake of paying for a subscription before I tried it. I have never been able to get it working.
I've been in contact with their support department who (very occasionally) reply to my email messages. I have done as they asked, run debug versions and supplied them with log files. They tell me that the problem is at their server end and they are trying to fix it. Since then (weeks ago) I've heard nothing despite repeat attempts to ask them for an update (and my money back). This morning, my phone told me that an update was available. I eagerly downloaded it in case this fixed the problem - it didn't. Just in case anyone from Wave Secure is reading this, please check support tickets IYR-245894 and BQO-385045 and you'll see how lousy you are at supporting a paying customer. So, although this product may be good, please don't buy it unless you are sure it works first. Also, if you have any problems, please don't hold your breath waiting for support from them as it probably won't happen.
View 8 Replies
View Related
Jan 22, 2010
So I loaded Wave secure beta to my Hero a couple weeks ago. I had occasion to travel to the west coast since and the phone locked as expected and unlocked when I entered my PIN. However, I wanted to test the remote locking feature and when I enter my login and password at the Wave secure web page it telss me I've entered incorrect info. I've verified the info multiple times but still can not login. I sent a msg to TenCube but haven't received a reply. Anyone else have this problem or know what the problem might be?
View 2 Replies
View Related
Aug 28, 2010
I want to select Android Wave secure Application As My Final Year Project. Before that i want to ask is there any hardware Involve in this Application, and Can i do it in 8 Months. Also can any one tell me how does it technically works.
View 1 Replies
View Related
Aug 25, 2010
Iv had lookout for a while now but it makes my phone very slow (moto cliq) i thought i found a better app called wave secure finds my location and can erase restore info too if stolen but its a 20 dollar monthly subscription. so i thought hmm maybe mobile defense is better but found out its in closed beta damnn so close. soo any other app i missed that can find my location,back up erase and restore my data from my phone or pc if stolen,lock down my phone, and sim card tracking would be a plus too but doesn't matter.
View 24 Replies
View Related
Sep 28, 2010
Following the examples given by Johns Trevor in order to secure Android LVL Applications (http://android-developers.blogspot.com/ 2010/09/securing-android-lvl-applications.html), I've been stuck on one only particular issue. Indeed, here is the matter: The most obvious mechanism is to use a lightweight hash function, such as CRC32, and build a hash of your application's code. You can then compare this checksum with a known good value. You can find the path of your application's files by calling context.GetApplicationInfo() - just be sure not to compute a checksum of the file that contains your checksum! (Consider storing this information on a third-party server.)
Howether, I can't find what I must use in my code to detect an "unwanted" modification inside it.
java.util.zip.CRC32 crc32 = new java.util.zip.CRC32();
crc32.update(whatPutInHere);
I've tried many method related to context.GetApplicationInfo() but no one seems to deliver something that change as soon as the code is modified. Has someone already succeed on CRC32 checksum implementation?
View 12 Replies
View Related
Jan 26, 2009
When running Cupcake release in my SDK I noticed that the secure table in settings db does not contain what is defined in [platform/ frameworks/base.git] / core / java / android / provider / Settings.java. Here is the ADB output: Code...
View 6 Replies
View Related
Nov 25, 2010
OK maybe I'm being paranoid and behind the rest of the world who has already done this: I'm afraid of adding my credit card to my Google Checkout account! My main concern being a super intelligent user of my Android phone who will buy a million apps (potentially!) - my 5 year old son
I used to have a credit card on my account - but that's expired
Knowing that the card had expired, I thought I would test out the buying of an app
I was surprised that it only took a few pages of my clicking yes to buy the app
(The purchase didn't go through - I got an email saying this because my credit card couldn't be charged)
Question: is there a secure pass code system to buy applications?
Like needing to input a code at the last step of buying
(I think this is how iPhone works - I say this not having owned one)
I don't think there is a secure pass system - I've played around with my phone loads and have never come across anything. BUT, EVEN if there was such a pass system: there's still something wrong!
I've bought my phone. Not made any changes. Just started using. I would imagine that's what everyone does - as opposed to buying and then customising and making secure (and maybe optimizing the use of energy so that it doesn't die within a few hours of use)
Buying an application: you can cancel within 24 hours (I think that's the time limit) Over the weekend, I let go of business life and only pick up on Monday - so if my son purchased and installed an application on Friday evening, I wouldn't find out until some time later - because I don't look at my phone OR my emails over the weekend! (+ Say if an application was purchased that I then managed to cancel - I then lose the right to buy again and trial with the right to cancel - a small point, but valid regardless I think)
Would be interested to hear what others say - maybe I'm missing something and maybe I'm using incorrectly.
View 24 Replies
View Related
Aug 10, 2009
In one android application, I created a database file in data/data/com.rams/databases/dbfilename.
If I created a second application with the same package name (com.rams) and I access the database file created with my first application, the second application is able to access the database contents.
How can I secure the database file created with my first application?
View 1 Replies
View Related
