This talk is about how can we ensure that our app binaries are safe and the data transmission and storage is secure.

In this brief talk i'm going to cover about below topics and my experience of aPEN and VAPT test feedback of our app:

1. SSL Pinning and the support that networking libraries offer.
2. App Integrity , play protect and the support that google play offer.
3. How to handle google play app integrity token to avoid the pitfalls we faced in our app ( throttling , initialisation tips and reusability)
4. Encrypted Preferences storage and how the latest jetpack libraries help here.
5. Storing your salt in a secure environment and your files ( imagine the premium apps like youtube that downloads your files but are not accessible from file manager)
6. Device root checks and identification mechanisms.