user2120415
Reputation: 67
Secure OAuth implementations in Android apps?
This may have a simple solution that I'm just not seeing, but Android apps can be decompiled, so people can extract your OAuth key and secret from your code. What is the best way to prevent this?
Upvotes: 0
Views: 73
Answers (1)
bobcat13
Reputation: 56
All depends on your architecture. May be the best solution is not to place secret data in apps but better in service/server application. All what can be decompiled will be decompiled. You may only gain time for exctracting data from apps by means of encryption.
Upvotes: 2
Related Questions
- How can I design a secure API/Authentication for mobile apps to access a service?
- Alternative salesforce authentication protocols
- RESTful Api authentication for an android app
- Options to securely authenticate mobile access using OAuth2
- How do I authenticate users for my Android app?
- How to implement Oauth in android for salesforce?
- What is the best method to authenticate users for my Android application?
- How to secure Android App that pulls data from OAuth protected resource
- Some questions about OAuth and Android
- How to keep the OAuth consumer secret safe, and how to react when it's compromised?