Threat Post

Android KeyStore Encryption Scheme Broken, Researchers Say

The default implementation for KeyStore, the system in Android designed to store users credentials and cryptographic keys, is broken, researchers say. The default implementation for KeyStore, the ...
Android Authority

How to use the Android Keystore to store passwords and other sensitive information

Before we begin coding, it is helpful to understand a bit about the Android Keystore, and it’s capabilities. The Keystore is not used directly for storing application secrets such as password, however ...
Ars Technica

Serious Android crypto key theft vulnerability affects 10% of devices

Researchers have warned of a vulnerability present on an estimated 10 percent of Android phones that may allow attackers to obtain highly sensitive credentials, including cryptographic keys for some ...