I have an android native app and for security reasons now the client says to encrypt SHA-1 key. I checked for the app for generated certificates it shows SHA-1 SHA-256 and MD5. How do I store it all securedly? I referred to these examples but confused about the implementation.In the entire app I looked I am unable to figure out how can I get and store it?In values.xml file all sensitive info is stored like google_api, Firebase details so I need to store it more securely. How can I do it?
Android Studio - how to securely store SHA-1 key in app
152 Views Asked by Abm At
1
There are 1 best solutions below
Related Questions in JAVA
- I need the BIRT.war that is compatible with Java 17 and Tomcat 10
- Creating global Class holder
- No method found for class java.lang.String in Kafka
- Issue edit a jtable with a pictures
- getting error when trying to launch kotlin jar file that use supabase "java.lang.NoClassDefFoundError"
- Does the && (logical AND) operator have a higher precedence than || (logical OR) operator in Java?
- Mixed color rendering in a JTable
- HTTPS configuration in Spring Boot, server returning timeout
- How to use Layout to create textfields which dont increase in size?
- Function for making the code wait in javafx
- How to create beans of the same class for multiple template parameters in Spring
- How could you print a specific String from an array with the values of an array from a double array on the same line, using iteration to print all?
- org.telegram.telegrambots.meta.exceptions.TelegramApiException: Bot token and username can't be empty
- Accessing Secret Variables in Classic Pipelines through Java app in Azure DevOps
- Postgres && statement Error in Mybatis Mapper?
Related Questions in ANDROID
- Creating global Class holder
- Flutter + Dart: Editing name of a tab shows up a black screen
- android-pdf-viewer Received status code 401 from server: Unauthorized
- Sdk 34 WRITE_EXTERNAL_STORAGE not working
- ussd reader in Recket Native module
- Incorrect display of LinearGradientBrush in IOS
- The Binary Version Of its metadata is 1.8.0, expected Version is 1.6.0 build error
- I can't make TextInput to auto expand properly in Android
- Creating multiple instances of a class with different initializing values in Flutter
- How to create a lottie animation
- making android analyze with coverity sast tool
- Flutter plugin development android src not opening after opening example
- I initialize my ViewModel in the Activity with several fragments as tabs, but the fragments(tabs) return null for the updated livedata
- Node.js Server + Socket.IO + Android Mobile Applicatoin XHR Polling Error...?
- How I can use the shared preferences class?
Related Questions in ENCRYPTION
- Is TLS enough for client server encryption or if dealing with sensitive data, its better to add ur own encryption also. for example leverage AWS SSM?
- Secure Messaging Implementation in C#
- File splitting and encryption
- Large file processing in the web browser
- Java code of AES/GCM/NoPadding encryption algorithm with authentication tag
- AES-256-CBC encryption returning different result in Python and PHP , HELPPP
- Why are encrypted stored procedures taking a long time to execute in SQL Server 2022?
- Why/How does Apache auto-include "DHE" TLS1.2 ciphers while nginx needs "dhparams" file?
- Encrypt in Single Store and Decrypt in SQL Server
- Is it possible to develop a Transparent Data Encryption(TDE) system on macOS now?
- How can I ensure incremental changes in deciphered messages in Python substitution cipher decoding?
- Getting Error Message as "the input string is not a complete block" while Decryting using AES
- Laravel: How to fix "the MAC is invalid" on local environment
- How to encrypt a string and decrypt it using a password
- Willena's sqlite-jdbc-crypt driver for sqlite3 database encryption
Related Questions in SHA1
- Create HMAC SHA-1 in JS with byte array
- Restore sha-1 certificate fingerprint on OpenSSL without setting security level to zero
- Hash values do not match
- SHA1 implementation differs from builtin SHA1
- Rewriting Python SHA1 Digest code to Bash
- Why Truecaller SDK gives me an error: 40304, Invalid fingerprint in my flutter app?
- Twitter oauth_signature process
- Need SHA-1 certificate fingerprint to use Google Maps in Flutter, Get Error Unsupported class file major version 65
- Unable to find signingReport for SHA-1 fingerprint key in Gradle Bar : Android Studio Hedgehog
- How to check code integrity with SHA1 fingerprint?
- How to calculate SHA-1 fingerprint of an X.509 certificate in Flutter?
- Reference Error - SHA-1 for node_modules\@react-native\metro-config\node_modules\@react-native\js-polyfills\console.js is not computed
- The term '-alias' is not recognized , while generating SHA1 key for firebase
- Generate Openssl signature
- One or more of your Android apps have a SHA-1 fingerprint and package name combination that's in use
Related Questions in SENSITIVE-DATA
- How to Restrict access to company's sensitive information for a developer from other country?
- Data Masking: Proper way to update masked data?
- Pandas profiling sensitive data - looking to randomize sample data in profile report
- Create a Wordpress User with user supplied password after successful PaymentIntent via Stripe
- Android Studio - how to securely store SHA-1 key in app
- How to hide sensitive data when using Android clipboard?
- nifi1.8.0 upgrade to nifi 1.21.0 with error Migration Required for blank Sensitive Properties Key [nifi.sensitive.props.key]
- Best way to transmit sensitive data during SSO redirect between two sites
- Is putting the env file at the root of my project folder makes it invisible on the client side?
- How to mask a value from postgresql.log while logging
- How to correctly store secret keys on React App?
- How can I hide my previous commits from my repo as it had some sensitive data
- Handle sensitive data in client-server communication
- How to hide sensitive information like a professional on my computer?
- OPA: Mask sensitive data
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Code from https://gist.github.com/JosiasSena/3bf4ca59777f7dedcaf41a495d96d984 encrypts and decrypts text using your app key. To use it you should first run your app, with calling encrypt on your secret text. Log the encrypted string to logcat. Then read it from logcat and put this string in your source code. Before using this string, you should call decrypt on it and then you can use it later in your code. Remember to remove the code you used to encrypt your string - it was only temporary.
You can play with this code using this example application:
https://github.com/luskan/EncryptDecryptApp
In MainActivity change SAMPLE_ALIAS to whatever you want.
Encryption is done with this code:
and decryption will look as follows:
Note, that on each encryption the encryptedText will be different - this is a correct behaviour.