Google states that apps downloaded from play will be encrypted on the device. I have a few questions:
1. From the documentation, it seems that the APK will be stored in encrypted form in the /data/ partition. If so, does this mean that on every execution, a decryption takes place? If so, the key has to be retrieved onto the device, probably from the users gmail account. 2. If I change my device, will my apps go away? The docs say device specific key. Maybe this is an incorrect term? The key should be associated with a key derived from the gmail account? 3. If the app is encrypted before download to the device, this means 2 things: a. the key is associated with the gmail account or b. google play talks to the device and the key is really stored on the device somewhere. Comments/Thoughts? -Earlence -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
