On Dec 4, 10:10 pm, "stefan.at.android" <stefan.at....@googlemail.com> wrote: > Hello, > > 1) I am wondering if the Android SDK has already predefined encryption > functions or if one would have to write this all from scratch? >
Andoird comes with OpenSSL and Bouncy Castle. That should be all you need. > > The latter one is my main problem - how to make sure, that the key > never gets stored unencrypted on a storage? > Unless you have an HSM, or an Android device with a TPM, you can't. I'm not aware of such devices, but there was some work being done to use the SD card reader slot as an IC card slot, not sure if it was finished. Android does not use swap, AFAIK, so you should be (mostly) OK, if you are careful enough. If you are new to encryption, the usual advice is, don't try to do it yourself, or at least get someone to review your code. HTH -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to android-developers@googlegroups.com To unsubscribe from this group, send email to android-developers+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/android-developers?hl=en