Is-sikurezza tal-applikazzjonijiet Android tinvolvi l-protezzjoni tad-data (ħażna, trasmissjoni), it-trattament sikur ta' awtentikazzjoni/kredenzjali, issegwi l-prinċipju tal-inqas priviileġġ (permessi), u l-gwarda kontra l-vulnerabbiltajiet komuni. Is-sikurezza hija essenzjali peress li l-applikazzjonijiet jittrattaw data sensittiva tal-utent.
Sikurezza tad-data
✓ ENCRYPT sensitive data at rest — EncryptedSharedPreferences, Android Keystore (for keys),
encrypted databases (NOT plain SharedPreferences/files for secrets)
✓ Use HTTPS/TLS for all network traffic (never plaintext HTTP); certificate pinning for
sensitive apps
✓ Don't log sensitive data; clear it appropriately; mind clipboard/screenshots
✓ Use the KEYSTORE for cryptographic keys (hardware-backed where available)
