Can this be used to hide API keys? It's fairly trivial to decompile an APK file. As another poster pointed out the key for Conceal would need to be stored somewhere also.<p>Any ideas or best practises of hiding API keys? Google has not turned up much. This Stackoverflow suggests storing keys remotely, but surely that too would be trivial to hack:<p><a href="http://stackoverflow.com/questions/10203910/anti-hack-solution-for-a-secret-key-in-android-app" rel="nofollow">http://stackoverflow.com/questions/10203910/anti-hack-soluti...</a>
If you're encrypting the data, you're encrypting it with some sort of key, which itself has to be stored on the device. Is that code sample using an Android library to get some secret key that is only accessible to the app in which it was generated, and no other app?