Hi All, Thanks for all your suggestions, I am looking more at lost and stolen scenarios where the device is lost and data stored within the device can be accessed.
One way I am trying is using encryption library like spongycastle/ bouncycastle to encrypt all data that will stored within the device by the application. And to decrypt the info they have to access through the application which will have login password (probably) alphanumeric. Not sure whether this can be done. But have anyone come across any links explaining the encryption portion. How do i encrypt files like pictures or videos? I have only tried bouncycastle to encrypt string so far. Not sure how to do for other files, convert to bytearray? Thanks In Advance, Perumal On Sep 27, 1:37 am, Guilherme Vieira <guira...@gmail.com> wrote: > Acording to Android API, the local SQL database can be configured to be > accessed / available only by the main user login information. > > > > > > > > On Mon, Sep 26, 2011 at 15:31, Kevin Chadwick <ma1l1i...@yahoo.co.uk> wrote: > > On Mon, 26 Sep 2011 12:55:40 -0300 > > Guilherme Vieira <guira...@gmail.com> wrote: > > > > The local SQLLite is safe, isn't ? > > > Only the people concerned can answer this, security is a process not a > > product. > > > They've put some effort into security but Android is no where near a > > bastion host. > > > IMHO Android is more secure than a Blackberry but an Android that is > > used for web browsing is less secure than a Blackberry that only > > accesses text email and no attachments (ignoring the enterprise server > > monstrosities). > > > A server has open ports, how secure is the listening program and > > transport. > > > Is it encrypted before storing in the database, how secure is the > > algorithm, can the Android device be rooted and if so is the key really > > safe. Are you hoping it will be stolen whilst turned off? > > > What level of security is acceptable to you, or ask a more specific > > question like, how to encrypt data before storing locally via sql? > > > -- > > You received this message because you are subscribed to the Google Groups > > "Android Security Discussions" group. > > To post to this group, send email to > > android-security-discuss@googlegroups.com. > > To unsubscribe from this group, send email to > > android-security-discuss+unsubscr...@googlegroups.com. > > For more options, visit this group at > >http://groups.google.com/group/android-security-discuss?hl=en. -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to android-security-discuss@googlegroups.com. To unsubscribe from this group, send email to android-security-discuss+unsubscr...@googlegroups.com. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
