Does Android have any system-level APIs for credential storage? If nothing else, the passphrase could be kept there (with a short expiration time), limiting damage if the phone is lost. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.zx2c4.com/pipermail/password-store/attachments/20130921/c41395c4/attachment.html>