I use this library: https://github.com/scottyab/safetynethelperI read the documentation on the Android Deveoloper website and in the repository. Everything is working fine, but something is not clear to me. It is indicated that it is safer to receive nonce from the server, rather than creating it on your application. And why is it better to transfer the response from the SafetyNet API to the server.
The most common SafetyNet security APIs are used to determine if you trust the device and application that communicate with your server.
, JWS Android, , , . ( ).
, , , , , -in .
nonce? Unce, ( , , ), . , nonce! , JWS , , nonce .
nonce .
Source: https://habr.com/ru/post/1659546/More articles:Compilation error when upgrading from 19 to 20 - javaMultiple NSFetchedResultsControllers in Swift 3 - genericsПеренаправить мобильного пользователя в другой .html файл только один раз. - javascriptWhat is the difference between a two-way adapter and an adaptive adapter adapter in C #? - c #Confusion in the general hierarchy List <> - javaВыбор jQuery после id - javascriptHow to get hue color from ImageView using code - androidThe main view of the application does not change to fill the screen when the device is rotated - iosHeadache of inheritance of Kotinovsky generics - androidThe following cached resources have a short freshness life - Google Fonts - javascriptAll Articles