Learn 3 Easy Steps to Encrypt Strings.xml in Android apps. This protects sensitive string data stored in Android apps
The soft belly of any application are the strings and resources that can be easily understood from the application without using specialized tools, for example phrases, URLs, tokens, passwords etc. Unlike the java strings and the assets folder which are encrypted by Appdome Strings and Resources encryption, the string resources, usually under strings.xml file, can’t be encrypted on the device because the OS needs to access it. This KB article provides step by step instructions on how to encrypt Sensitive strings.xml values in Android apps.
To provide our customers overall security protection of their Android app, Appdome’s XMLEncrypt™ service encrypts the sensitive strings stored in the localizable locations in Android. Now you can easily enhance the security of your app against malicious attempts to read the app’s content.
We hope you find it useful and enjoy using Appdome!
How Encrypting ‘Strings.xml’ in Android Apps Protects Mobile App Data
In Android apps, the strings.xml is often used by the OS (i.e. to show the application display name and to hold the localizable string resources). Additionally, it is common for mobile app developers to store all the app strings including sensitive data and values inside this folder. Since the strings.xml file can’t be encrypted as a whole, Appdome’s XMLEncryptTM provides a way for customers to encrypt all the sensitive strings in the strings.xml folder that are not used in the app manifest or by the OS.