保护信息的Android [英] Protect information in Android
问题描述
问题说明
我写的应用程序为Android。应用程序必须执行以下操作:
-
连接使用下列URL服务器:
用户名和密码,我必须保持在手机及此用户名和密码是相同的所有用户。例如,如果1,000,000人有我应用程序中使用相同的URL相同的用户名和密码都连接到服务器。
-
下载网址的database.xml文件,将数据保存在SQLite数据库。
问题
-
我如何使用URL在我的应用程序,以确保其有机会获得我的codeS用户无法知道从code的URL我用,也让我的安全密码,用户名。 甚至只是为了让整个URL的安全 http://www.example.com /database.xml?username=xxx&password=xxx ,因为它是相同的所有用户。
-
我如何能够保护我的SQLite数据库。例如,如果有人有手机,他可以得到数据库,打开它,并得到我让那里所有的信息root权限。
我需要保护我的数据。
我觉得你应该去的 ProGuard的。我知道,从逆向工程的很难prevent。以下是一些职位,而提供有关这方面的一些知识。
- <一个href="http://stackoverflow.com/questions/13854425/how-to-avoid-reverse-engineering-of-an-apk-file">How以避免APK的逆向工程文件?
- <一个href="http://stackoverflow.com/questions/4336637/is-it-really-impossible-to-protect-android-apps-from-reverse-engineering">Is它真的无法保护Android应用程序,从逆向工程?
保护您的Android应用程序是一篇文章,其中介绍了有关的必要信息ProGuard的。
阅读常见问题解答了解更多。
要保护数据库,使用 SQLCipher 。
Problem Description
I am writing application for Android. Application must do following:
Connect to the server using following URL:
http://www.example.com/database.xml?username=xxx&password=xxx
username and password I must keep in the phone and this username and password are same for the all users. For example if 1.000.000 people have my application they all connect to the server using same url same username and password.
Download database.xml file from URL and save data in the SQLite database.
Issues
How I can use URL in my application to be sure that users which have access to my codes can't know from the code which URL I use and also to keep secure my password and username. Or even just to keep whole URL secure http://www.example.com/database.xml?username=xxx&password=xxx as it is same for all users.
How I can protect my SQLite database. For example if somebody has root access on the phone he can get database open it and get all information which I keep there.
I need to protect my data.
I think you should go for ProGuard. I know its very hard to prevent from reverse-engineering. Following are some post which give some knowledge about this.
- How to avoid reverse engineering of an APK file?
- Is it really impossible to protect Android apps from reverse engineering?
Protecting Your Android Applications is an article which describes necessary information about ProGuard.
Read FAQ to know more.
To protect database, use SQLCipher.
这篇关于保护信息的Android的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!