“空天飞机”要来了,你准备好上太空了吗?
百度 我们把经济统计数据,我们的关键性指标,当作成功或失败的标志。
Questions tagged [Android] should focus on security of the operating system itself, or of Android-specific apps. Questions about Android that are not directly security-related should be asked at android.stackexchange.com.
18 questions from the last 365 days
-1
votes
0
answers
56
views
CPU-light local encryption solution for mobile devices?
I'd like to locally encrypt files and folders on Android before uploading them to a cloud storage service, just in case the cloud is not as private as advertised and assuming it faces higher threats ...
- 1
0
votes
0
answers
45
views
Can I trust TeraBox? [closed]
TeraBox providing 1 TB completely for free looks so delicious, even too delicious to be real...
I have read a lot about TeraBox from the Internet and now I suppose that there are some connection ...
4
votes
1
answer
73
views
What is best way to intercept http traffic on an APK that uses WebView
I have this project where I am trying to to intercept HTTPS traffic of an APK.
I have done this plenty of times with HTTP Toolkit and Bypassing pinning.
This project however has been very difficult as ...
- 41
1
vote
1
answer
82
views
Is Android Keystore/iOS Keychain without biometric authentication still secure against physical access attacks?
I'm implementing refresh token storage in a mobile app and trying to understand the practical security differences between these two approaches:
Option 1: Hardware-backed storage WITHOUT biometric ...
- 185
1
vote
1
answer
57
views
In PCI DSS SAQ A, does "customer’s browser" include merchant apps using TPSP-provided UI elements for card data?
I’m trying to understand a PCI DSS SAQ A requirement that says:
"All elements of the payment page(s)/form(s) delivered to the
customer’s browser originate only and directly from a PCI DSS
...
0
votes
1
answer
122
views
Securing OpenSSL for my Android project
I am working on a security-related project and have to make sure there are no OpenSSL attacks.
According to my understanding, OpenSSL attacks can be at at hardware as well as software level. Currently ...
- 111
1
vote
0
answers
62
views
Are RCS encrypted messages in Google Messages, that the senders say they didn't send, the sign of a security issue or glitch? [closed]
A frequent contact of mine has been receiving texts that say "End-to-end encrypted message" on her Android phone in Google Messages. These messages appear to be from me, and she says that ...
0
votes
0
answers
114
views
Altered Android app icon, indication of spyware?
While setting up and debugging a VPN connection on an Android device with the “Net Analyzer” app, I spotted by
chance a suspicious icon in the application as shown in the screenshot below (shows the ...
- 1
2
votes
1
answer
354
views
How to make sure a used custom-ROM phone isn't malicious?
I am (hypothetically!) thinking about buying a used phone for sustainability reasons. I am also thinking about this being a non-Google phone for ethical reasons. There are some people in my country ...
- 123
1
vote
0
answers
51
views
Where can I get a list of trusted certificate authorities? [duplicate]
Background
(Disclaimer: I know very little on this whole topic)
Let's Encrypt has recently dropped some Certificate Authorities (the TLSv1.0?), which is an issue for Android 4 devices, since now they ...
- 235
2
votes
4
answers
606
views
Google Find My Device unknown tracker alert algorithm?
I was reading Google's blueprint about their new technology called Find My Device and what took my interest was unknown tracker identification and how Google does that.
Unknown tracker alerts. The ...
- 313
6
votes
3
answers
954
views
Keyboard isolation in Android
I'm currently running GrapheneOS on a Pixel 6a, and I have installed several alternative keyboards from F-Droid and the Play Store.
How isolated are keyboards in Android? When I enable a keyboard in ...
- 975
0
votes
2
answers
255
views
Should mobile app developers actively prevent apps from running on outdated devices/rooted devices/emulators for security purposes?
From personal experience many mobile apps that I've tested don't actively detect and discourage (with a warning) or even block the app from running on/in:
a rooted/jailbroken Android/iOS device
...
- 7,675
2
votes
0
answers
105
views
Possible attacks againts head unit of contemporary cars
I purchased a new car this week. It has multimedia unit (sometimes called head unit of car). It has FM/AM/DAB radio functions (with its radio antenna) ,bluetooth 5.0,Wireless CarPlay – Android Auto, ...
2
votes
0
answers
52
views
Google security and 'find my device' - confusing info [closed]
My Samsung Android phone was stolen 4 days ago while on vacation in Rome. I also have a Samsung Android tablet with me and I am trying to use it to help remote wipe the Samsung phone. Both are fully ...
- 121