Facebook unveils “Conceal,” aimed at making Android apps more secure

Facebook unveils “Conceal,” aimed at making Android apps more secure
Facebook has released an open-source tool that will assist developers in building more secure applications for Android devices. The library of code is called Conceal and it provides a set of interfaces that make programming secure code a little easier.

This will assist developers when they need to build the app and ensure the app is able to safeguard sensitive data, particularly when the developer wants to allow an application to function properly on an SD card.

SD cards are handy at storing extra stuff on our devices, including apps. However, the Android OS designates SD cards a public resource. That means other apps on the card can access the same files. Developers have had to contend with a number of challenges when trying to secure their applications, especially when dealing with the prospect that some Android phones can run short on resources if the app is installed on the device’s storage.

Facebook’s solution allows developers to get their apps up and running faster and the libraries that Conceal uses are continuously updated through feedback from the developer community. The best part is that with this cryptographic package, app performance appears to get quite a bit faster (when measured in milliseconds).

Applications using Conceal take under 50ms to read or write encrypted data compared to apps using other packages like Java or BouncyCastle which take three to five times longer. Conceal also provides developers with the resources to manage secure keys and protect against known weaknesses in the OS. With this lightweight package, and open-source nature, Facebook may have a winning tool for developers.

“One objective of releasing Conceal is to enable other developers to quickly get up and running. We also believe that libraries get better with contributions and feedback from the community, and the community support can help improve the performance and security of this library,” Subodh Iyengar, Software Engineer at Facebook.

source: Ars Technica



1. PBXtech

Posts: 1032; Member since: Oct 21, 2013

I find it difficult to believe Facebook and secure can go hand in hand with the amount of hacked accounts their site gets.

2. hkendrick3

Posts: 6; Member since: Dec 13, 2012

I agree I think FB needs to worry about there own backyard before they cross into another. Don't get me wrong I love FB, but facts are facts

3. networkdood

Posts: 6330; Member since: Mar 31, 2010

+1 to comment 1 and 2....this article is very laughable - almost had milk coming out through my nostrils, because I laughed so hard...my Android phone is already very ultra secure....TYVM

4. bloodline

Posts: 706; Member since: Dec 01, 2011

I would like Facebook to make the android app better than F*** around with all this other stuff they are doing. No one gives a f*** FB we just want to be nosy and look at pictures from time to time. Your advertising model sucks aswell.

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at https://www.parsintl.com/phonearena or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit https://www.parsintl.com/ for samples and additional information.
FCC OKs Cingular's purchase of AT&T Wireless