Tool Secured Assets - Encrypt your assets files

This tool allows you to encrypt a set of files on the desktop and then add them to your project instead of the regular assets files. The problem with regular assets files is that it is very simple to extract them from the APK file as the APK file is just a standard zip file.

In the B4A program we need to unpack and decrypt the files. This is only done once. Unfortunately this step (deciphering) is quite slow. You should only use this solution with small files. It will be too slow for larger files.

The sub signature is:

Private Sub UnpackEncryptedAssets(StoreName As String, Password As String, Version As Int)

The StoreName is the name of the database file.
Whenever you modify the store files you need to increase the version. Otherwise the store will not be unpacked. You can see the code in the attached example.

How to use

- Create the store file with the desktop tool and add it to the Files tab.
- Make sure that the Files folder only includes files that are not in the store. Remember that all files in this folder will be added to the APK.
- Add the UnpackEncryptedAssets sub, KeyValueStore class and the following libraries: SQL, RandomAccessFile.
- Call UnpackEncryptedAssets in your main activity when FirstTime is True.
- You will need to use Main.UpdatedAssetsFolder instead of File.DirAssets to access the unpacked files.
- The files names are case sensitive and are all lower cased. You should change the existing references accordingly.
- Make sure to use a process global variable for the password. The string will be obfuscated.

This tool is a bit of an overkill in most cases. A hacker with a rooted device can fetch the files from the internal folder after they are unpacked.

You can modify the code to delete the files after they are used. In that case you should also delete store.db that is created in the "version folder" (see the code).

The compiled tool can be downloaded here: www.b4x.com/b4j/files/SecuredAssets.jar
To build the B4J tool you will need to download the bouncy castle library: Share encrypted data with B4A

 

[peacemaker]

Ha ! Recently it was asked...
So, direct decription to the memory from the encrypted DB or file - still impossible ...

 

[wimpie3]

Hmmm... couldn't it be possible for B4A to encrypt the files when you compile the project instead of using an external program? And indeed peacemaker, using the images without writing them to the internal storage first would be fantastic.

 

[Erel]

couldn't it be possible for B4A to encrypt the files when you compile the project instead of using an external program?

Maybe in the future.


You do not need to write the data to a file. You can instead use Bitmap.Initialize2 and convert it to an image. No file will be created.

 

[JoanRPM]

Very interesting.
It would be better if it were intergrade in the compiler.

 

[masky]

Hello Erel,

Is possible something similar in the opposite way? I mean…


1. Create a file into the mobile in runtime. Encrypt.

2. Export this file to the computer.

3. Decrypt.


Thank you.

 

[Erel]

Sure. You can use KeyValueStore in the device and then decrypt it with KeyValueStore on the desktop.

 

[masky]

Hello Erel,

and now I silly question. When I create a new txt file in my app at runtime, where can I find this into the mobile. I'm looking for the file but I don't know where the apk has been unzip and installed. Thanks.

 

[Erel]

You can save it in File.DirRootExternal and then connect the device to the computer with a USB cable and get the file.

 

[Ratna Fang]

hi erel,

can i use this method to encrypt *.jpg (not asset files) using b4j app and then decrypt the *.jpg using android app?
using random access file lib?

 

[Erel]

Yes. RandomAccessFile encryption algorithms are the same in B4J and B4A.

 

[masky]

Hello Erel,

only one detail...into the UnpackEncryptedAssets sub, ProgressDialogShow("Preparing resource files...") is not showing.

Thank you.

 

[omidaghakhani1368]

Hi.thank you
for me get error when add files but if directory is empty not error what?

 

[Erel]

Which error do you get?

 

[omidaghakhani1368]

Which error do you get?

error for list files of course i fix it with listview

 

[omidaghakhani1368]

Erel excuse me
when i initialize database in sqlchipher get error
Fatal signal 11 (SIGSEGV) at 0x00000000 (code=1)
and not initialize database
i create this database with SecureAssset
what am i doing?

 

[Erel]

SQLCipher is not related to this at all.

SQLCipher will create an encrypted database by itself. If you want to distribute it with your app then you need to copy it from the device and add it to the project.

 

[omidaghakhani1368]

thank you Erel i can solve it with your help

 

[omidaghakhani1368]

Hi Erel.
I cannot encrypt big file or SecureAsset not add password on file why?(of course small is encrypt)

 

[Erel]

Hard to say without seeing the error. However this solution is less useful for large files as the decryption will be too slow.