I'm using ClientStorageAPI to store some user's data and I had a doubt: How secure is it?
I mean, is it possible for an experienced user to change the client keys?
Thank You
Asked
Active
Viewed 90 times
1 Answers
2
At least in Android, ClientStorageAPI data is saved in the application's private storage area. This data is secured in the sense that neither other applications nor the user himself can read or alter it, because each app is sandboxed.
However, this restriction does not apply if the device has been rooted.
As always when security is concerned, re-checking in sever-side code is highly recommended.
