Hi My puprose is to safely store a secretkeys ,used for encryption/ decryption process., in a keystore file in android. The keystore is password protected, but open to brute force attacks if it can be exported to regular PCs.
I read in SDK that application can not access private memory of other applications, which is great, so inside a phone I am considering myself as safe. My concern is when the phone (device) is connected to computer, then everything is exportable to computer (as in emulator), and so is the keystore file which is then open to attacks. One solution to this would be to use cryptographic mini/microSD cards, but its rather expensive (and beside could not find such a product too). So my question is : Is there any area inside an android, where we could keep a private data which will not be exportable in any way ? Sincerely Ray --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] Announcing the new M5 SDK! http://android-developers.blogspot.com/2008/02/android-sdk-m5-rc14-now-available.html For more options, visit this group at http://groups.google.com/group/android-developers?hl=en -~----------~----~----~----~------~----~------~--~---
