security

This is a Example project for the AS_TextFieldAdvanced, to show the password strength indicator. https://www.b4x.com/android/forum/threads/b4x-xui-as-textfieldadvanced-title-information-counter-password-button-prefix-suffix-icons-multiline.141337/ Have Fun :)

Hello all. Recently my app made with B4A passed a penetration test and one of the issues discovered was: Signature algorithm v1 used (Janus CVE-2017-13156) Reference...

Hi everyone, someone of you knows if it's possible to connect to a BLE Devices that needs the PIN, and give it by code, instead of let the user insert it through a dialog? Thanks in advance

Hi. I'm already using B4J obfuscation, which helps a lot with making decompiled code harder to follow. I was wondering if there is a technique or tool I'm missing to give my app better security. The thing is, mine is a huge app to be used in large companies, and it's a first (in terms of...

Hi, I`m developing a B4X app and will be storing/accessing potentially sensitive data from a remote SQL database using PHP (I can`t use RDC, as I`m using Godaddy server). I want to make sure the data is secure, Is encrypt the data in the app and send (encryption password, would be in the...

OTP is a one time pin (here: 6 digits) depending on a given password and the actual time. Usage: - additional security when a user does a login - take care of server requests (a request can be intercepted and repeated). As it depends on the date/time with OTP this isn't possible - some sort...

This is a short tutorial/code snippet on how to successfully implement Touch ID in your app. Thanks to @Semen Matusovskiy for his code. You need this OBJC Code #IF OBJC #import <LocalAuthentication/LocalAuthentication.h> - (void) authenticateButtonTapped { __result = -1; LAContext...

Hello All, Im deploying this new App in PlayStore and, in the Pre-Launch report i'm getting this "Security and trust" Error/issue: "Cleartext traffic allowed for all domains Error - Privacy Your app's Network Security Configuration allows cleartext traffic for all domains. This could allow...

Not a snippet, more a serious advice: Just playing with my VPS-Server in prod and I mentioned tons of login tries from guys trying to get access to the root account. My provider (IONOS, ex 1and1/1und1) offers a console where you can switch off ports by default (like a firewall before the...

Hello, For security, Is it necessary, and if yes what is the best method to do for: Hidding particulary parameters or constant or var into the code, like : Public PhaRcs As String = "Mypassword" ' Password Public WebSite As String = "https://www.MyWebSite.com" ' Url Public...

...and suddenly when I reopen my project I get a lovely alert advising of a parsing error! "An error occurred. Error parsing libraries. For security reasons DTD is prohibited in this xml document. To enable DTD processing set the DTDProcessing property on XMLReaderSettings to Parse and pass the...

Android has a way to securely store sensitive data. It is called the Keystore System. https://developer.android.com/training/articles/keystore.html Would anyone have information on how to use this in B4A? Anyone have a library to use?

Hi guys I recently created this class for a particular project, you can use it , you can google the RSA algorithm for more information. and merry Christmas :)