Well, I'm looking for advice about how to implement secure communication between an android client who connects to a WCF server over BasicHttpBinding using HttpJob.
I've thought using the same "super secret long password" on both sides to crypt and decrypt, but since I don't know if that password would be decompilers-proof with b4a obfuscation, or maybe there is a more secure or best-practised way.
So, using a SSL connection is a server issue, I should implement SSL on the server, the android client will be the same (except for the "https" part), right?