Save a key in the NDK


Reading about the best way to save an api key on Android, I came to the conclusion that a good way would be to save it using C ++ on the NDK.

To hide a key in the NDK would be something like this:

    #include <string.h>
    #include <jni.h>

    jstring Java_com_riis_sqlndk_MainActivity_invokeNativeFunction(JNIEnv* env,
    jobject javaThis) {
      return (*env)->NewStringUTF(env, "pass123");

The question is ... how do I indicate in an Android project that I want to write in c ++?

Here the tutorial in question: watch tutorial


asked by Pablo Cegarra 12.02.2017 в 19:44

2 answers


It may not be entirely infallible but it is a good option, to be able to load a module, first go to your SDK Manager since you have to download the 3 packages that are shown in the image:

your project must be created to include this support, for this, when you start you can see a button where you select this option, Include C++ Support .

When creating your project, you can see in the structure of your project a folder called src/main/cpp in which a file called native-lib.cpp was created.

If you check your MainActivity file, you have an example of how to implement the module in your application:

public class MainActivity extends AppCompatActivity {

    protected void onCreate(Bundle savedInstanceState) {

    // Example of a call to a native method
    TextView tv = (TextView) findViewById(;

    static {

    public native String stringFromJNI();


You can see 2 new things in the code of a MainActivity class, first this block, which is used to configure 'native-lib' when starting the application.

 static {

and the implementation of a native method implemented by the native-lib library.

public native String stringFromJNI();

To configure the NDK in your project add to your file where the route of the SDK is the one of the NDK, with this your project will be ready.


I found an excellent tutorial in Spanish to do this: How to execute C code from Android with the NDK

answered by 13.02.2017 / 06:59

Try the library SecureKeys I have not tried it yet, but it looks good if it works:

To save the keys:

    @SecureKey(key = "key_api_googlemaps", value = "aD98E2GEk23TReYds9Zs9zdSdDBi23EAsdq29fXkpsDwp0W+h"),
    @SecureKey(key = "key_other", value = "otra clave...")

And to recover the key:


Security in saving the keys


This library uses an annotationProcessor to store the constants in a   new file (where the constants are encrypted), and via JNI it will   later retrieve them decoding them inside the .so file.


This way the attackers cant know the encoding system (because its   inside the annotation processor), neither the decoding.


Note: They can still "find" the class with the crypted constants or do   a heap of the map inside the .so file. But since its encrypted   they will have a (way too much) harder time figuring the constants   out.

answered by 20.06.2017 в 10:32