Find out how to create a secure Android application by assessing the security of your application using the checks listed in this Slideshare.

1. 16 Ways to Create
a Secure Android Application

2. The security functionality provided
by the Android platform is rich, and
strong security mechanisms can be
created using built-in features.

3. Here is a list of checks that
you can use to assess the
security of your application.

4. Check that all
code paths into
application
components
expose only the
functionality
that is intended

5. Minimize the
storage of user
data down to
the essentials

6. Limit interaction
with untrusted
sources
and scrutinize
any outside
interaction

7. Verify that
the minimum
possible set
of permissions
have been
requested by
the application

8. Ensure that no
unintended files
are bundled
inside the APK

9. Assign
permissions
to all exported
application
components

10. Ensure that
sensitive inputs
do not store any
typed-in words
into the Android
dictionary

11. Ensure that all
inputs for user
passwords are
appropriately
masked

12. Ensure that
content providers
do not have SQL
injection
vulnerabilities

13. Ensure that file-
backed content
providers do not
provide access to
unintended files

14. Ensure that
pattern-matching
flaws do not
exist on any
paths protected
by permissions

15. Set restrictive
file permissions
on files stored
inside the private
data directory

16. Pay attention
to the sensitivity
of files stored on
the SD card

17. Ensure that
sensitive files
stored anywhere
on the filesystem
are encrypted

18. Encrypt all
communications
to the Internet
using well-known
standards

19. The Mobile
Application
Hacker’s
Handbook
by Dominic Chell,
Tyrone Erasmus,
Shaun Colley, and
Ollie Whitehouse
THESE ARE JUST SOME OF THE WAYS DEVELOPERS CAN ENSURE
THEIR ANDROID APPLICATIONS ARE SECURE.
FOR THE FULL LIST, CHECK OUT