Security Guidance Android
- Bharadwaj Reddy Sama (Unlicensed)
The followings are some of the security guidance to be followed by the Requestor App for secure use of the SDK. After you initialize "cardinal" defined in Step 3 of the Flow Documentation, call "getWarnings" method on cardinal instance to get a list of all the Warnings detected by the SDK. For Example, Following six vulnerabilities are detected by SDK: The integrity of the SDK has tampered. SW03 An emulator is being used to run the App. SW04 A debugger is attached to the App. SW05 The OS or the OS version is not supported. The application is not installed from a trusted source. Analyze the list of warnings to take further action. Call "getSDKVersion" method from Cardinal class to get the build version and number of the SDK. For Example, After initializing, check the SDK version to make sure you are using the latest version of the SDK.Check Warnings
List<Warning> warnings = cardinal.getWarnings();
Security Warnings ID Description Severity SW01 The device is rooted. High SW02 High High Medium High SW06 High Check SDK Version
String sdkVersion = cardinal.getSDKVersion();