07-18-2013 09:05 AM
I have a Web Works App with a lot of sensitive data in a Web SQL database.
Solved! Go to Solution.
07-18-2013 12:19 PM
Security is always a relative term. Nothing can ever be guaranteed to be 100% secure.
If your database is stored in your app sandbox, no other apps have access to the database file, unless one day BB10 is hacked and the app security sandbox mechanism is compromised.
If a third party can somehow execute JS or native code within your app, they could potentially gain access to the data. If your app downloads or embeds third-party data, make sure you are not vulnerable to injection attacks. If your app loads info from the shared file area, that could be a potential weak spot. If your app is an Invocation Framework client or target, that may be another.
Examine any 3rd party libraries and extensions you may be using for vulnerabilities.
Make sure your signing keys are kept safe.
You might want to investigate how secure backups are, as your app data could be included in those.
If in doubt: hire a security expert. Still no guarantee though.