Android IAP, if I don't bother by fake purchases, I need security?

Sisso · October 4, 2013, 6:55pm

I am trying to answer this question for some time, I really apreciate if someone could help me point to the answer.

The short version is at topic.

The long question: I am trying to get information that allow me to decide when, and what security recommendation I must follow. For me, all recommendations have a unique objective to protect your App from deliver content for fake purchase.

Can someone see any other hidden benefits?

For others, I really don’t get what is the point, like “Protect your Google Play public key” (打击欺诈和滥用行为 | Google Play's billing system | Android Developers), why I need to protect it? What can anyone do with it? It is not the propose of a public key from RSA be public?

References:

Agent_007 · October 5, 2013, 7:59am

If fake purchases don’t matter, then you can skip that documentation.

Some parts of that documentation (e.g Obfuscate your code) also applies to piracy protection, but there are better docs for that if you are interested about that.

Sisso · October 7, 2013, 1:23pm

Agent 007, thanks for your answer. Didn’t find a second opinion for simple thing, but important one, got me scared.

Topic		Replies	Views
IAP Android Hack Unity Services Unity-In-App-Purchases	4	3167	August 24, 2020
How are you protecting your apk Unity Engine Android , Platforms	1	1066	October 24, 2015
Unity IAP client side receipt verification after google dev account transfer Unity Services Unity-In-App-Purchases , Question	0	26	December 17, 2024
Android piracy - an idea that can help? Unity Engine Android , Platforms	2	1146	June 2, 2015
Android and Piracy Unity Engine Android , Platforms	33	4226	October 25, 2015

Android IAP, if I don't bother by fake purchases, I need security?

Related topics