h6. What
Leverage some existing checks into We should expose a function that allows the Android Security SDK end developer to check if the underlying device is rooted.
h6. Why
A rotted device can be used to modify application code or recover application data. We should provide a function to allow a user to check if the device is rooted so that they can take actions to protect the user and their data.
h6. How
Using We can use the recommendations coming out of the initial IdM SDK Module work
http [RootBeer|https :// feedhenry github . org com / mobile-security scottyab / #mobile_app_self_defence
Check rootbeer] library to be completed for this JIRA: check if the user's device is rooted.
/**
* Detect if the device is rooted.
*/
public void detectRoot() {
RootBeer rootBeer = new RootBeer(context);
if (rootBeer.isRooted()) {
return true;
} else {
return false;
}
}
|
|
