If you've flagged frequently asked questions in Google Wallet , you can find the following:
Your billing information is stored on a chip called Secure Element contained in your phone. The protected item is isolated from the phoneโs main operating system and hardware. Only authorized programs, such as Google Wallet, can access the Secure Element to initiate a transaction.
Even Google Wallet itself has very limited access to a protected item and cannot read or write data from its memory. There are several levels of data protection stored in a protected element, and it is protected at the hardware level from tracking or tampering.
So basically ... you do not have access to this SecureElement . Maybe talking to phone manufacturers to give you access / ways to access SecureElement will let you do this ... but I think that would be out of scope.
EDIT: An alternative solution is to store your data in a SQLite database, as well as use encryption in that database, such as AES ... or whatever you prefer. You still have to pay attention to how you hold / distribute encryption/decryption keys .
If you are concerned about the case when someone loses their phone and the โfounderโ tries to steal data, you can also implement password protection on your Application , and if the password is entered incorrectly 3 times in a row, drop the SQLite database where the data is stored.
Ovidiu latcu
source share