Following our talk "Security and Privacy in Android Apps" at Google I/O last year, many people had specific questions about how to use cryptography in Android. Many of those revolved around which APIs to use for a specific purpose. Let's look at how to use cryptography to safely store user credentials, such as passwords and auth tokens, on local storage. An anti-pattern A common (but incorrect) pa
![Using Cryptography to Store Credentials Safely](https://cdn-ak-scissors.b.st-hatena.com/image/square/eb27763e31bba018d86007794dd8019880ca1299/height=288;version=1;width=512/http%3A%2F%2F3.bp.blogspot.com%2F-m9OjYhySVW8%2FURwiN1hR-cI%2FAAAAAAAAB8o%2F0aTXDBZT2NQ%2Fs400%2FRandom-Droid.png)