Android Database Encryption to Protect Data & Model

Asked Dec 30 '15 at 08:57

Active Dec 30 '15 at 08:57

Viewed 59 times

I ship a database with my app, and I would like to protect the data model from others peeking inside. Basically I dont want anyone opening the db file besides the app itself.

My research has led me to SQLCipher for Android: https://guardianproject.info/code/sqlcipher/

However some of the posts online say that encrypting DB will not prevent someone from opening it, as an attacker can easily look up the key: Android How to use SqlCipher with pre-bundled Sqllite Database?

To me if the key can be looked up then the point of encrypting a shipped db is pointless as it does not offer protection.

My question is:

Is SQLCipher the right approach to encrypt the DB in order to protect its data & model from attackers?

edited May 23 '17 at 12:31

Community

asked Dec 30 '15 at 08:57

AlexVPerl

7,652
8
51
83

slqcipher uses AES algorithm to encrypt the data, you can implement it by yourself with more control on that – Javad Jafari Jan 03 '16 at 10:15
Do you mean taking the route of encrypting / decrypting column values manually? – AlexVPerl Jan 03 '16 at 18:54
yse, that is how sqlcipher works – Javad Jafari Jan 04 '16 at 07:16

Android Database Encryption to Protect Data & Model

0 Answers0