Skip to content

Security Issues

Caroline Barrineau edited this page Oct 31, 2022 · 5 revisions

https://developer.android.com/topic/security/best-practices This website sheds a lot of insight on security precautions needed when making an android app

Sensitive Information

Sensitive information would be the user’s emails and passwords.

Possible Malicious Attacks

Malicious users could harvest emails to be added to phishing lists.

Passwords could be harvested and given the associated email address, potentially hack the victim on a different platform.

Malicious users could attempt to use the Notes Screen to root out insecurities within the app’s code since it is mainly unsupervised in hopes of giving regular users creative license.

Protection Plan

Keeping the app up-to-date with Android’s built-in security

Ensure our code does not assume any higher privileges. (Read-only content)

Check the validity of all user inputs (creating NPCs/ combat rolls)

Ensuring the Notes cannot affect the app’s coding/ create insecurities

”Store all private user data within the device's internal storage, which is sandboxed per app. Your app doesn't need to request permission to view these files, and other apps can't access the files. As an added security measure, when the user uninstalls an app, the device deletes all files that the app saved within internal storage.” -Android Developer website

Clone this wiki locally