On Tue, Oct 28, 2014 at 6:26 PM, Benedikt Freisen <[email protected]> wrote:
> Ok, I misunderstood that then. > > Another option: > - download the language pairs using the app (the way it's done now) > - compute a hash value (e.g. SHA) and store it in app memory, > where it cannot be changed by other apps, but store the actual data > on SD card > - refuse to use the data if the hash value does not match > > This option should allow for practically the same level of security that > the app has now. > That's a good idea! But your schema would not be completely secure unless you can somehow make sure that the bytecode is not modified in its way from the server to the user's device (i.e. you should be protected against man-in-the-middle attacks). This means that your idea would work for the official android app (its language pairs are stored in the svn repository -not a good idea BTW- and downloaded over https), but not for Mitzuli. Mikel
------------------------------------------------------------------------------
_______________________________________________ Apertium-stuff mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/apertium-stuff
