Storing SQLite file securely

Right now SQLite is working great, and I can load files from the documentDirectory.

Is it true that on Android and iOS, anyone could inspect the file system and view the SQLite file?

The file contains 13 mb of copyright protected data, and I’m supposed to keep it “secure” from users.

The trouble is, according to the documentation, from what I understand, I can only load SQLite files from a user-inspectable directory: the document directory.

Yes, it’s true that the user can get at the database files. If the user jailbreaks their device, it also doesn’t matter which directory the files are stored in. If those files are encrypted inside the db (e.g. using sqlcipher), then having the files alone will prevent anyone from reading them, provided that person doesn’t also have the key which was used to encrypt the database.

1 Like

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.