Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I will be publishing an Android application for a client in the coming weeks and need to look at how to secure the app
At the moment I am currently running Proguard
I am not concerned about the resources (xml, images) what I need to protect is the source.
Apart from Proguard is there anything else I can do?
Thanks
B
there are tools to disassemble your apk file. Proguard is a must-have, however, it doesn’t mean absolute security. The proguard just makes the decompiled codes not as readable as the source codes, so it needs much more time and patience to analyse the codes. Basically, it’s enough, if you concern a higher security, I suggest:
write your core algorithm in C, and call it via JNI.
encrypt your sensitive data or not store it locally.
break down your methods into fragments , to make it more difficulty to read after decompilation.