Book Image

Testing and securing android studio applications

Book Image

Testing and securing android studio applications

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Testing and securing android studio applications
Aug, 2014 | 162 pages
No titles found
Table of Contents (18 chapters)
Testing and Securing Android Studio Applications
Testing and Securing Android Studio Applications
Credits
Credits
About the Authors
About the Authors
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introduction to Software Security
Introduction to Software Security
Software security terms
Threats, vulnerabilities, and risks
Secure code-design principles
Testing the basics
Summary
2
Security in Android Applications
Security in Android Applications
The mobile environment
An overview of Android security
Permissions
Interapplication communication
Summary
3
Monitoring Your Application
Monitoring Your Application
Debugging and DDMS
Threads
Method profiling
Heap
Allocation Tracker
Network Statistics
File Explorer
Emulator Control
System Information
Summary
4
Mitigating Vulnerabilities
Mitigating Vulnerabilities
Input validation
Permissions
Handling a user's data and credentials
Interapplication communication
Summary
5
Preserving Data Privacy
Preserving Data Privacy
Data privacy
Encryption
Using encryption to store data
Summary
6
Securing Communications
Securing Communications
HTTPS
Code examples using HTTPS
Summary
7
Authentication Methods
Authentication Methods
Multifactor authentication
Login implementations
AccountManager
Summary
8
Testing Your Application
Testing Your Application
Testing in Android
Testing the UI
The UI test project
Running UI test cases
Summary
9
Unit and Functional Tests
Unit and Functional Tests
Testing activities
Creating an activity test
Summary
10
Supporting Tools
Supporting Tools
Tools for unit testing
Tools for functional testing
Other tools
Summary
11
Further Considerations
Further Considerations
What to test
Developer options
Getting help
Summary
Index
Index

Using encryption to store data

Using all the methods discussed in the earlier sections, you can now encrypt any information in your application, as shown in the following code:

String myData = "My secret information";

SecretKeySpec sks = generateKey();
byte[] encoded = encrypt(myData, sks);
String decoded = decrypt(encoded, sks);

Log.d("MAIN - Encoded: ", 
Base64.encodeToString(encoded, Base64.DEFAULT));
Log.d("MAIN - Decoded: ", decoded);

The results generated in LogCat are shown in the following screenshot:

The previous example can be adapted to encrypt the content of a file on the internal storage of your application, as shown in the following code:

String myData = "My secret information in my internal file";
SecretKeySpec sks = generateKey();
byte[] encoded = encrypt(myData, sks);

FileOutputStream fos = 
openFileOutput("MyEncryptedFile.txt", Context.MODE_PRIVATE);
fos.write(encoded);
fos.close();

On executing the code in your main activity, the MyEncryptedFile.txt file will be created...

Previous Section
End of Section 4
Next Section