Security Best Practices: Symmetric Encryption with AES in Java and Android: Part 2
If you can’t use authenticated encryption like AES+GCM, this article will show how and why to use AES+CBC with Ecrypt-then-Mac with HMAC.
- Tags/
android-development
Improving ProGuard Name Obfuscation
In this article I will show you how to strengthen ProGuard’s name obfuscation, making it harder for an attacker the reverse engineer your…
Handling Proguard as Library Developer or in a Multi-Module Android Application
When starting a new project, all the Proguard configuration goes into that single proguard-rules.pro file. This is fine for the beginning…
Managing Logging in a Multi-Module Android Application
In this article I will show you how we adapted our logging strategy to a massively grown project structure. In the first part I will go…
Security Best Practices: Symmetric Encryption with AES in Java and Android
What to consider when encrypting your data and how to correctly implement it with AES-GCM.