Hey, I'm building an Android App that is going to use a web service to make requests for a database. One of these requests is to authenticate an user by sending its password and username via HTTP. That's whats worries me most, anyone can easily intercept a package and get user's password, so I would like to do it more safely. I've read about some methods, like token authentication, OAuth that saves me the trouble of sending user's password over the internet and keeping my system more safe.
Well, I'm very newbie at Android Development and Android Security so I would like your advice in which method I should use so I can keep my system safe and also fast enough. I have almost everything built excepts for the security part of sending HTTP requests over the internet. Also, I need something quite simple and fast to code, since I just have one month to deliver this App. Thank you guys -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss. For more options, visit https://groups.google.com/d/optout.
