Mobile Considerations

When protecting mobile applications built with .NET MAUI or Xamarin, certain platform-specific considerations must be addressed to ensure optimal security and performance.

Android Protection Considerations

Android applications face specific security challenges due to the platform's open nature and the ease of decompilation.

Android-specific Protections

Shield automatically detects when your application is being built for Android and applies specialized protections:

1. APK Content Protection: Protects resources and assets within the APK file
2. Dalvik/ART Optimizations: Ensures protection works with Android's runtime environments
3. Anti-Rooting Measures: Detects rooted devices and responds according to your configuration
4. Native Library Protection: Secures native libraries included in your application
5. Anti-Tampering Verification: Ensures the APK hasn't been modified after installation

ProGuard Compatibility

Shield is automatically compatible with ProGuard, working alongside it to provide comprehensive protection for your Android application. No additional configuration is required.

iOS Protection Considerations

iOS applications run in a more controlled environment but still require specialized protection against reverse engineering.

iOS-specific Protections

Shield automatically detects when your application is being built for iOS and applies specialized protections:

1. Binary Protection: Secures the compiled application binary
2. Jailbreak Detection: Identifies jailbroken devices to prevent tampering
3. Objective-C Bridge Protection: Secures the communication between .NET and native iOS code
4. Memory Protection: Prevents memory dumping and analysis
5. Code Signing Integrity: Ensures the application hasn't been tampered with

Recommended Protections for Mobile Applications

Essential Protections

These protections are highly recommended for mobile applications:

{
  "protections": {
    "anti_jailbreak": {},
    "constants_encryption": {},
    "constants_mutation": {},
    "rename": {
      "rename_public": false,
      "rename_arguments": true
    }
  }
}

The Anti-Jailbreak protection helps prevent your application from running on compromised devices, while Constants Encryption and Mutation ensure sensitive data is properly protected. The Renamer protection helps obfuscate your code while maintaining compatibility with mobile frameworks.

Additional Protections

These protections can be added based on your specific needs:

{
  "protections": {
    "control_flow_advance": {
      "intensity": 6
    },
    "reference_proxy": {},
    "virtualization": {}
  }
}

Secure Storage Protection

For securing sensitive data stored on the device, we recommend using Constants Encryption:

{
  "protections": {
    "constants_encryption": {}
  }
}

This ensures that any sensitive constants, including those used for storage, are properly encrypted.

Network Communication Security

For securing network communications, we recommend using Constants Encryption to protect sensitive data:

{
  "protections": {
    "constants_encryption": {}
  }
}

This helps protect sensitive information that might be transmitted over the network.

Testing Mobile Applications

After applying Shield protection to your mobile application:

1. Test on a variety of devices with different OS versions
2. Verify application startup time and performance
3. Test background/foreground transitions
4. Verify all platform-specific features
5. Test network connectivity scenarios

Best Practices

• Layer your protection: Combine Shield's protections with platform-specific security measures
• Use anti-tampering: Enable anti-tampering detection for both Android and iOS
• Configure responses: Define appropriate responses to security violations (warning, limiting functionality, or terminating)
• Separate configurations: Use different Shield configurations for debug and release builds

For more information on protecting cross-platform code, see Cross-platform Strategy.