On Fri, Jul 22, 2011 at 4:02 AM, wasabee18 <[email protected]> wrote: > I am handling some sensitive information like password in my app. I am > wondering how secure it is to pass password as a parameter to intent. > For instance, when I monitor the device with adb.exe, I can see some > parameters of the intent sent before the intent is resolved by the OS. > How easy is it to monitor/spy/dump the intent resolution process and > its parameters from: > - a third party app (say malware) installed on the phone > - from a PC connected to the phone (using similar tool as adb)
http://commonsware.com/blog/2011/06/30/warning-activity-intent-extras-public.html -- Mark Murphy (a Commons Guy) http://commonsware.com | http://github.com/commonsguy http://commonsware.com/blog | http://twitter.com/commonsguy Warescription: Three Android Books, Plus Updates, One Low Price! -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/android-developers?hl=en
