Disagree. They're two different things. With data stealing the a large amount data goes from the device *to* another location. With license verification the data (i.e. license) a small amount goes to the server (enough to identify the user name/ID and device ID) and a license comes back which can then be verified on-device.
If I saw a "licensing system" sending more than a hundred or so bytes of data out to a server I'd be deeply suspicious. Al. ====== Funky Android Limited is registered in England & Wales with the company number 6741909. The views expressed in this email are those of the author and not necessarily those of Funky Android Limited, it's associates, or it's subsidiaries. On 4 Dec 2010, at 18:34, Chris Stratton wrote: > I postulate that it is impossible to distinguish an application which > does custom license verification against a server from one which > steals private user data. > > Agree or disagree? > > It seems to me that the kind of highly obfuscated, cryptography using > mechanisms needed to make a license query that can't easily be patched > out or spoofed would also permit stealthily uploading private data to > that server. > > -- > You received this message because you are subscribed to the Google Groups > "Android Discuss" group. > To post to this group, send email to [email protected]. > To unsubscribe from this group, send email to > [email protected]. > For more options, visit this group at > http://groups.google.com/group/android-discuss?hl=en. > -- You received this message because you are subscribed to the Google Groups "Android Discuss" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-discuss?hl=en.
