Let's say I want to create an application in which the stored data will be encrypted, so only my application can read it.
But I want the application to be available only if the user is on a certain network. For example, the application is an Android application that deals with medical records in a hospital. How to be sure that the device is connected to the hospital network? The idea is that the application will not work outside this network.
The issue is not particularly relevant to wireless networks, wireless devices, or Android; it is common for programming and identifying a network.
Can a certificate do this? I am new to this. Can I fake a network id? For example, I'm sure WiFi SSIDs are easy to fake.
Greetings.
Details: Assume that the local data point is not for "offline mode", but to avoid network latency. In this case, the data should remain available only when connected to a specific network, in the event of a device theft.
But if there is no way to verify network identification ... How about a server that answers the question, "Hey, am I on the right network?" and if there is no answer, I know that I am not on the right track? (Or that the server simply does not respond ...) But, again, if the application is hacked, this can also be faked.
source
share