-
Notifications
You must be signed in to change notification settings - Fork 267
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Question: Is the data stored encrypted? Is it easily accessible from the file system? #64
Comments
Any encryption for local data is unreliable. So never store password in any form of local data. But not worry too much, local data is safer than network request, cause the "hacker" must have the device in his hand to dig any local data (and of course keep the device safe is not your duty). Data other than password, such as privacy info, I think is OK (just my personal opinion). |
Thanks for the response @sunnylqm. I won't be storing password info so I think it should be fine like you said. However, I'm still wondering about this part of the question:
|
I don't know. I never tried. |
Ok thanks. I'll see if I can figure it out and if I do, i'll post my result here. Cheers 👍 |
Hello, if I'm correct this library is based on AsyncStorage, which itself based on SQLite on Android and simple dictionary on iOS. That's why I'm 99% sure that data is stored in private application storage which is not accessible by other apps by default |
@Knight704 basically, using unencrypted SQLite means we shouldn't store sensitive data here like user info, even id. |
On device (iPhone), I can backup all data into iTunes then use some tool to extract and read data in app, ex: |
I personally want a password-manager app storing passwords locally in local db. I insert only the encrypted strings. Good idea? |
Hey there,
Got another question regarding accessing the raw data that I'm storing using the library.
Can the data be accessed easily from the file system (Android/iOS)? Is it encrypted?
I'm wondering if I should store sensitive data (e.g. user purchases) using this library or not. Any recommendation?
Cheers.
The text was updated successfully, but these errors were encountered: