I need to store sensitive data in a sqlite database in an android app.
How can I be sure this data is very safe?
I know I can encrypt the data using a key, but where do I store that key? I don’t want to ask the user to fill in a key either, I just want it to work on it’s own.
Because I am afraid of reverse engineering I don’t want to put an encryption key in the code either.
I found out about SQLCipher. It says it’s a very secure way of encrypting the data in the database, but why is it that way? Don’t I also need to keep a key to unlock that information? Or is this really a perfect way of making sure the data is safe?
And if it isn’t, what is an (almost) fail-proof way of storing sensitive data in an sqlite database?
Symmetric cryptography requires a key to encrypt and the same key to decrypt. There is no way around it.
Do not store the key in the code because it can be decompiled (Like you’ve said).
Ask the user for a password on the first use and use PBKDF2 to derive a cryptographically secure key to use in the encryption.
Either the user has to enter the password or you need to store it in the memory. What I’d do is, ask the user to specify a duration where the key will be cached in the memory to use for decryption.
And if the duration is expired, the user WILL have to enter the password again.
I didn’t check SQLCipher thoroughly but it says it uses AES-256. AES is a symmetric cryptographic algorithm and it needs a key to encrypt and the same key to decrypt.