2013年8月18日星期日

android sharedpreferences Save Password Question

Has been in doubt, use the android sharedpreferences (permissions set private) save the password, that if the phone ROOT password will not be read easily lead to the disclosure ah? Seeking to explain
------ Solution -------------------------------------- ------
will you be able to pass the MD5 encrypted password stored
------ Solution ------------- -------------------------------
root after that you can pull out shared_prefs is that you record the password file is actually a XML file
------ Solution ----------------------- ---------------------
encrypted with MD5 saved on the line, but MD5 is a one-way encryption
------ Solution - ------------------------------------------

bidirectional is not safe.
stored md5 encrypted password and the login password of the user input before passing MD5 encryption, and then compared with the saved password.
------ Solution ---------------------------------------- ----


and learn!
------ Solution ---------------------------------------- ----

MD5 is a one-way, but you generally request the server to log in, is to pass the password before encryption, rather than that with local encrypted password comparison. So generally do not use this method.
------ Solution ---------------------------------------- ----
generally use md5 encryption, you are registered, the server is not saved in plaintext will use MD5 encryption Oh
------ Solution ----------- ---------------------------------
this we know much about it, where you can save the password Andrews , using the AccountManager class, but use up more trouble, GOOGLE account is so saved.
------ Solution ---------------------------------------- ----
configuration file password or less secure, even if they have to be saved encrypted.
------ Solution ---------------------------------------- ----

You do not mislead people, how can there be transmitted in the clear now, if the server is stored in plain text, that the server was hacked, all the user's password is exposed.
------ Solution ---------------------------------------- ----

right
------ For reference only -------------------------- -------------
that generally how to achieve a safer way to save passwords
------ For reference only ------------ ---------------------------

You're quite right, it is generally in what way
- ---- For reference only ---------------------------------------
original So, understand
发帖者 时间:

1 条评论:

  1. jlins2013年8月20日 01:32

    so given that it need an authentication, how will the code will be?

    回复删除

订阅: 博文评论 (Atom)