SMS is not the right way to go about this: it is not a secure protocol, in the sense of SSH or TLS. Just use TLS.
Check out Harald Welte's presentation from Hacking At Random 2009 in case you're wondering how an attacker might go about hacking SMS. On Sep 4, 2009 8:13 AM, "Urs Grob" <[email protected]> wrote: I'm trying to figure out if it's possible for some third party application to read the content of an outgoing data sms. I send a data sms by calling SmsManager.sendDataMessage(...). Is there a way to intercept this by using either public or _private_ api? I'm trying to share a secret key with the service on the other side so it can send me an encrypted message that no other app installed can understand. If it is possible to intercept this message I'll have to think of another way to share the key. (e.g. over a web service) Rooted phones or other non-standard system images are of no concern since those users did that on purpose. All I want is to make sure that John Doe is safe. -- Urs
