Concerns about safety Cloud Service

[MatthijsG]

First of all, i'm a long time user of Memento. I bought a full version in 2010. There are some concerns:

1. By default the accessibility is public. When adding a testdatabase to the cloud, i could open with the URL this database on a different account. You have to revoke access manually. I'm wondering how many databases have this option on by default.
   
2. Where is the data stored? Memento is registered in Tsjeljabinsk, but that's not saying anything about the storage location.
3. How is the data transferred between my phone, the cloud and my computer?

[Bill Crews]

According to the wiki (http://wiki.mementodatabase.com/index.php/Cloud_storage_and_Teamwork), "Interaction between the application and the cloud is protected by cryptographic protocol TLS."

My Libraries all say "Pubic access is disabled.", and that is by default; I've never changed that setting.

I haven't tried access by URL. I would hope the same standards apply.

[Der Hof 2007]

Mine all say disabled as well. I'll admit though, I am not a fan of ANY cloud. The only reason I am using one at all is because for my libraries its a million times more convenient to do this stuff on a real computer with a keyboard as opposed to a phone.... and if someone gets to see a database of my Lord of the Rings Collectibles then hooray for them and their sad lives, lol....Once the heavy work is done I will delete from the cloud anyway and do full backups to my SD card which I can then copy to my NAS. However for more sensitive libraries that may contain passwords or more personal info I will put in the cloud and do as much as I can on my PC then remove and finish before I enter the delicate info on the phone cloud free.
I really wish Vasya would set this up so that I can download my libraries directly to my PC and edit it back and fourth. I'd pay an extra $50 for full functionality cloud free.

[Bill Crews]

Might I suggest a Chromebook Pixel? Not so many dollars, and you get Android, keyboard, plus Chrome.

[Der Hof 2007]

Well, I actually have a Galaxy Note withe a 10" screen and a mid size blue tooth keyboard. Problem is that I'm kind of spoiled with my PC.... Running with three 24" monitors...Plus I have big hands and anything less than a full size keyboard isn't fun for me... probably why I can't even remember the last time I used that bluetooth keyboard....
However you just gave me an idea... I can use a program like BlueStacks (which I have in the past)... its an Android emulator for the PC. I wonder if I can use that and create a backup to transfer to the phone?

[Bill Crews]

I'm not selling, but there are large Chromebooks out there, and the newer ones may have Android built in, like the Pixel does. I know the Samsung Chromebook Pro will, at 12.3".

Maybe the Acer? There's a 32GB version of this 15.6" one, also. Not sure about Android.

Acer Chromebook 15 CB5-571-C1DZ (15.6-Inch Full HD IPS, 4GB RAM, 16GB SSD)
https://www.amazon.com/dp/B00TU7U4PU/ref=cm_sw_r_taa_oJVByb2NJ8JN7

[Der Hof 2007]

Ok, but the thing is... I want my libraries portable. So in the end I will want them on my phone as the primary use. So even if I did get a Chromebook with Android would I be able to create libraries and transfer to my phone without any cloud storage? I just installed BlueStacks and and running Memento... downloaded my libraries that are currently in the cloud and have full functionality. Added a couple test entries and they were transferred to my phone.... but that is because of the cloud. However the only problem is I can't see any way to save anything to my pc and then be able to transfer for the phone. If I go to settings to create a backup I just flash card directories like it was my phone... not sure what it is even pointing to... I can't select any directories on my PC...

[Eugene Kartoyev]

As of Android, what about export/send all csv?

[Der Hof 2007]

Eugene... Besides a lot of libraries that will be only text based I'm using this for a lot of collections and inventory so they are very image intensive. I have some libraries up to 350meg. Is that something I could even do? I tried to make a PDF out of one of them and it maxed at 200 meg. I'm assuming this was an Android or Memento limitation as I've seen much larger PDF files on a PC. The main problem is my trust issues with the cloud. If it wasn't for that I'd have no problems.

[John C]

I have a galaxy 12.1 with a full size keyboard.

There is a solution to your problem. A company doesn't cater to one or two people in their customer base. They look at the masses.

[Der Hof 2007]

Well, John... slightly confused... that isn't a solution... you must have missed the part about the 3 24" monitors. I don't work on tablets. I'm not a teenager.

Second... I'm not asking to be catered to. I'm trying to find a way around the situation. I don't recall me whining like a bitch asking to be catered to. As for the masses... well your wrong... companies/app developers are constantly updating their software. Either correcting problems or 'adding new features'... many suggested by their customers. I'm sure there are plenty of other people out there who would take advantage of what I am suggesting.

[Eugene Kartoyev]

Concerning the masses...

In English they say - the squeaky wheel gets the grease.
In Chinese - the loud rooster gets first into the soup.
Which one do you like better?

...
...

To tell the truth, I don't like the cloud (esp. private cloud) solution either. Not about security, but rather about stability. Using them you become too much dependent on the health / diligence of the support team and cloud traffic conditions.

On the other hand, providing a straight per-library synchronization scheme would totally kill their income. Android development is an absolutely unprofitable business, it's hard, long and prices are under 6 dollars in general.

One could make Memento 100 bucks - but no-one would ever buy it. That's the specifics of Android. 99% apps are cheap and written by amateurs. If it's something professional, like Memento, they deserve making money on it. But, I don't see any other solution than a cheap cloud for masses.

Re-Disclaimer: I don't like clouds either.

[John C]

I'm not a teenager.

[John C]

Clouds are here to stay if you ask me.

I like the Chinese saying.

[Der Hof 2007]

Yeah, that's part of it as well. I don't like to relyrics on other people either...if his server is down then that screws people over if they need it. Me personally I have multiple backups of everything and even if I could simply upload to my nas then I would still back that up to external drives.

I understand that the cloud is a way for him to make a profit... money has nothing to do with it for me... it's the other reasons we discussed.

It's a shame these days when people cry about paying a few dollars for an app. Everyone thinks they deserve something for free for some reason. Like I said... I'd gladly pay another $50 for this app if it had just that one more feature.
It's a great app and I have a use for it so Vasya deserves to get paid for it.

Not the end of the world. Once all my libraries are done I'll pull them from the cloud and make a full database backup on the phone and copy to other locations.

After that my libraries will only need small occasional updates that will be easy enough from the phone.

[Der Hof 2007]

I know you're not a teenager... I was just sarcastically pointing out how people seem to accept convenience over quality these days and going backwards in technology. Like people using tablets and phones instead of a full blown desktop. The desktop will never be replaced. People downloading crap MP3's instead of buying a physical CD and ripping to FLAC files. Kids watching Netflix on their phone while sitting on a couch 8' away from a 60" television. WTF!!! Anyway, getting off topic here...

You're right, clouds aren't going anywhere anytime soon.... but that doesn't mean I need them. I put together a Synology NAS with 5X8tb hard drives with files I can access from anywhere in the world if I set it up that way. While this is mainly a media server for my home it is technically a cloud.... but its my private cloud ;-)

Anyway, not here to argue about anything.... I want a feature that's not there... Not the end of the world, I'll live. Just tried to find a work around and throw out the suggestion for the feature to be added.

Take care.

[Eugene Kartoyev]

Dear Hof!

I am very glad this controversial discussion popped up. It's a pity though that both of you are presumptuously not teenagers any more, as if being a teen were something yucky. I'd love to be one. So, allow me to pretend to be a teenager among you two, old dudies, okay?. ;)

I remember a dozen years ago people spat at CDs preferring vanilla discs (or whatever you call that dinosaurish awful tech that grandpas so much yearn about), and Android is becomimng much more convenient (=better) than a PC. Fact!!!

But it seems in the talk with you, the workaround answer is coming up by itself. They say you can organize your own cloud using seafile https://www.seafile.com/en/home/

So, why not make a folder with memento files on several Android devices and sync betwen them using some fast local wi-fi connection or own-cloud solution by copying the **whole repository of Memento** from one device to another when needed.

Provided the Memento paths are the same, Memento should work identically on both the devices. Except, that you will have to always control which device has a newer db version before syncing. Because it will sync the whole database, not parts.

What do you think?

[Der Hof 2007]

Hey Eugene!

Well, I don't think I'd want to be a teen again, LOL... but 25... HELL YEAH!!

Don't forget.... albums are becoming popular again!! Although I was never into the vinyl thing myself.

While you are not going to convince right now on the convenience of any tablet (Android) over a PC... Unless you can tell me how to rip a CD or Blu Ray disc to one while doing paperwork on another monitor with a movie playing on another monitor while editing a home movie (shot with a real freaking camcorder and not a phone) on another monitor.... Yeah... the desktop is the undisputed king ;-)

Ummm... well what you mention wouldn't even be a problem even without a program like Seafile... although it would make things nice.
My issue is if I want to do all my database editing on my PC.... If I use the Memento software then the Memento cloud is the only way to sync files.
If  I use an Android emulator like BlueStacks that I mentioned... well it works perfect and syncs to my phone instantly using the Memento cloud.
But I can't seem to find a way to create a local backup on my PC with it... I've checked the Memento App settings and the BlueStacks settings and the only directories I can find are for an SD card that obviously doesn't even exist.
And if I dump my backup from my phone to my PC I can't find it using the Memento restore database option in the emulator.
So I either need to do a little research on the program or perhaps it cannot even be done....

[mandraek]

not sure if this helps but is a screen clip of the options available on the desktop version ($6/month)

[mandraek]

and version details

[Der Hof 2007]

Actually that will work.... for the most part. Creating a library on the desktop version doesn't seem to be as sophisticated as the Android version.
And images can't be transferred through CSV. And once everything is copied over I would have to make some adjustments to the library.

I thought I had this kicked in the ass. I copied my backup from the phone to the pc and restored it to BlueStacks and it worked almost perfectly.... for some reason it does not want to display the pictures. Even though I have a zip file nearly a gig in size full of all the pics from the database.

Tried a few different times... not sure why its not using the images.
This is actually to the point where its more trouble than its worth but I like the challenge and don't accept defeat to easily....

Soooo, right before I was about to post this I checked something... if you're using Memento PC all your work is uploaded to the cloud on the fly.... defeats the purpose of what I'm trying to do.

So, here is one possible work around if I really wanted to do it. Create a library exactly how I want on the phone with no entries and upload to the cloud. Download to PC version. Disconnect PC from the internet. Remove the library from the cloud on phone. Do all my inputs and export to CSV. Dump the CSV to my phone and import!! God I love to waste time, LOL. Although that would work for what I want... and once I get all my libraries done my updates will be minimal on this app and no problem to just use the phone at that point.

However I'm confused as to why transferring of the backup is not working with the pictures?
Going to try something later.... need a break.

[MatthijsG]

Thanks for all the answers. 

Question 2) isn't answered for me

1. (...) 

1. Where is the data stored? Memento is registered in Tsjeljabinsk, but that's not saying anything about the storage location.

When i put sensitive data in Memento, i want to know it's safe. 

[Bill Crews]

If the developer won't answer this for you, I don't think you're going to get your answer any other way. It's a decision made by him based on his criteria, and he could change it at any time. I suggest you try to get a policy statement from him. Otherwise, we must decide whether to just trust his judgment.

[admin]

• Memento Cloud is based on Google Cloud platform. All your data are stored in Google Cloud Storage. 

[Eugene Kartoyev]

Whose Google Cloud storage? Can you provide more details, please?

Do you, as an admin, have access to the data?

How can we make sure that the data is safe and is not accessible to anyone except the person who has password?

Is there any link or official Google documentation describing the mechanism of that cloud?

How can one be sure that the data is not leaked some day due to a virus or something on the computer who has administrative access to that cloud?

How can I make sure that the Cloud is using the mechanism you describe? Is there some "WhoIs" service to check that?

With the recent hack events, I think it is important to have all these questions clarified and be as much transparent as possible.

[Der Hof 2007]

Exactly Eugene. And regardless of the answers is the fact that questions like these can even exist and that is why I will NEVER put sensitive information in ANY cloud.
I'm using it now to do some of the heavy work that is more easily done on a computer but as soon as that's done and it comes to libraries that I want secure then my cloud superscription will be completely cancelled.
Other than making money there is zero reason this app can't be set to sync with my own NAS or PC. Which is fine... I know people have to make a living. But as I already mentioned before I'd gladly pay another 50 or even 100 dollars for an option like that.
Now the developer will get about $12 in 2 months of cloud fees from me instead...

[Eugene Kartoyev]

Well, Der Hof,

I'm actually sorry to agree with you and go even further, that Memento's case is full of violations that may get it blocked by Google forever, including all the developer's accounts, IPs, tradename, etc. and even get into a political trouble.

Memento users surely do enter a lot of sensitive data, like passwords, cards, their ailments, business data...

All we currently know is that there is a Vasya, who supposedly lives in a huge condominium in Chelyabinsk, where 500 Vasyas could actually live.
Vasya in Russian is like John or Mary in English

Vasya enters into communication here very very seldom.

The information about the address in Chelyabinsk is entered in Google Developer console as the person pleases. It is not verified by Google unless somebody flags it.

Now, with the current state of affairs, what we have is that

1. Memento violates the requirement of providing the true developer address, because Chelyabinsk, Br. Karshininykh 134a - is actually as exact as New York, house Number 5.

2. Memento transmits personal or sensitive user data unrelated to its core functionality and this is not described prominently in the app’s listing on Google Play or in the app interface, and then prior to the collection and transmission.

3. It does not prominently highlight how the user data is used and does not have the user provide affirmative consent for such use.

http://play.google.com/about/privacy-security/user-data/ - here is a description of such violations
https://developer.chrome.com/webstore/user_data - here is a description of the minimum an app should do

There are other requirements which are written in Developer Console, which are flagrantly violated in relation to who you trust your data. No name, incomplete (= false) address, inexistent legal entity name.

The only place Luckydroid is mentioned is this site http://mementodatabase.com - in other words, no data again.

Search "Компания Лакидроид" (Company Luckydroid) provides no identification in Russia.

I hope, the Memento developer takes steps to correct the situation and eliminate the infringements.

Memento is an awesome application, so I'd love to trust Vasya and I would really hate it if it comes to someone's mind to complain to Google. Then it would be Memento's last day in Google Play.

Question to Vasiliy, do you have any plans to provide transparency with Memento?

Because you have written a veeery serious and very high-quality application, and too many people depend on it.
You also collect payment, so, if anything bad happens that would be a BIG scandal.

You must be just a bit more responsible and it's urgent!

Please!

[Der Hof 2007]

Hey Eugene,

Well, it certainly appears that you've done your homework and you know far more about this type of situation than I do.
I have to run right now but I'll look a little more into the things you have mentioned later.

Let me ask you this... should I feel safe using this app even without the cloud service?
I mean I don't know enough about programming and how these things work.... for all I know anything I type into that app could be being transmitted somewhere it shouldn't be....

What sucks is how do you know what to trust anymore. When I go to GooglePlay and see and app with 500K plus downloads and 7500 5 star reviews with and average of about 4.5 I tend to let that make me believe everything is on the up and up.

[Eugene Kartoyev]

Der Hof,

Vasiliy wrote me an extensive response in Russian, that I will translate tomorrow and send to Bill, who is Memento's greatest supporter.

It is a very comprehensive and well-argumented technical response, containing all correct security details that a professional programmer should be aware of and should implement.

Currently, it is absolutely safe to use the cloud if you encrypt your library. He described the encryption method, which I fully understand being a programmer myself, so it is fine.

Next, I hope Bill Crews will help me to correct my Russky mistakes and include a corresponding policy announcement to the wiki with other security details, to which the user will have to agree or disagree.

Memento may have some omissions in provision of security statements (which is mostly a matter of correct English translation and procrastination due to concentration on seemingly more important issues), but the app hasn't been detected to have any issues by Google on that for the past six years of its existence. Which is a good sign, given what draconic measures Google is imposing now on security.

[MatthijsG]

Yes, and the time. Memento is a long time on the market.

No problem when Memento is build by a young whizzkid, living by his mother. Or an old man. Or .. whatever. It is a fine program. But it's not transparent. I can't host my own cloud. 

Did a trace on libs.mobi. It's redirecting to Google http://network-tools.com/default.asp?prog=trace&host=libs.mobi

[MatthijsG]

Google Cloud Storage is a service from Google. https://cloud.google.com/ Don't think they will easily delete an account, because it's a service you rent. 

[Buffelsdrift Mountain Bike Park]

Any feedback on Vasiliy translation from Russian, elaborating about the concerns?

[Eugene Kartoyev]

I did receive answers to questions from Vasiliy, which I translated and forwarded to Bill.
Now, as I infer, some official feedback is being elaborated and put out.

Currently, I could say the following. Vasya's response was frank and deserves trusting.

He did not try to conceal any fact thatbhe has access to libraries and described the following:

1. Memento's sole developer has access to unencrypted libraries, and he may help with errors, should the need arise.
2. No third parties are provided access to the libraries, unlike some popular corporate apps, like, say email agents or social networks, maintained by crowdy revolving staff.
3. If one doesn't trust the developer, he can opt for library encryption and then the developer won't have access to it either, or he can use other means for synching rather than the cloud - via backups, Google Sheets etc.
4. Passwords are stored only locally.
5. Luckydroid is a pseudonym allowed by Google. Vasya's address / telephone are available from Google if needed, or if one wants to, it can be found on some networking sites. To my judgment, all the data is consistent in various places, so no problem with identifying the developer. One can also contact him through the support email, if personal inquiry is needed.

...

Other than that --- my personal opinion is this:

I believe that it is absolutely safe to use Memento for business data. It is very unlikely that some competitor could try and contact the developer to obtain "confidential" info from him. As for other data - like health, diets, accounting ... whatever - that represents interest only for the owner of the data. So, from the very beginning I was worried not about the security of my data, but of the cloud administrator's health and financial stability. Now, when Vasya says Memento's cloud is Google based, these are no issues pertaining to him.

We all have to trust our data to somewhere to a certain extent. For example, I trust my pics, documents, data to clouds.
There are however some data that I don't trust anyone. It includes passwords, bank-card pins, my wife's erotic photos.

Passwords and pins I keep on paper, written in characterd invented, in my safe box.
Photos, I don't want to share, I keep on a device that is never connected to Internet. My e-book.

Well, - erotic family photos is an exaggerated example in my case - but I guess it could be realistic. 😉

There are also other dangers. Like phishing, for example. No one is insured against that. Even Hillary Clinton got caught on a hook.

So, before deciding to use Memento, one should reasonably rank the confidentiality of his data against his own importance and possible interested parties.

Like, if I were feeding info to Memento, I would do the following:

My shopping expenses, My work orders, My address lists - not confidential. (Who might be interested: wife, friends, colleagues - no material harm if leaked)

It is enough to set up a phone password for this data.

My correspondence, My important sms, My bank reports - more confidential (wife, colleagues, authorities, competitors). I would keep this data passworded, so if my device is left by accident in my colleague's house, they wouldn't be able to peek into it. I'd never believe it would come to their mind to contact Vasya in the search for this data, asking him to hack it.

I don't see Vasya as an interested party in that data. I don't see why he could become interested. So, I trust his application.


My passwords and pins, Third parties's documents entrusted to me under Confidentiality Agreement - top confidential (everyone is a suspect. I am paranoic on that). I don't trust it to Memento, but I don't trust it to Google, Mail.ru, - internet in general. Top secret.

So, I either keep this data in my head, or exploit my own method of keeping this data - like coding with words, making confusing encryption, keeping documents passworded in attachments etc.

Security can never be 100% guaranteed. So, once you get your data on any electronic mefia - it is compromised. It can be hacked, stolen, phished, leaked etc.

Memento has proven itself with 6 years under its belt in Google Play. It is a very good sign. At least I would trust Memento more than iPhone or some new starting apps in GP.

As I understand, the developer is going to make his own statements on security via wiki and with Bill's help, since we have risen so much buzz around it on this thread.

Thus, I won't interfere with my premature declarations, except that I don't have any serious reason to distrust my data to Memento.

On matters that I don't trust Memento, however, - I wouldn't use it. And I wouldn't use any other application on any device with any internet access.

I also have an internet-less phone with a 32-GB memory card and password - to keep data.

But it is also not 100% safe. Who knows if the telephone company secretively sends out my data via the GSM network.

As for Memento's official data security policy - it must be posted soon by Vasiliy and Bill. Then, it is up to the user to decide.

[Der Hof 2007]

Hey Eugene, thanks for the time and effort you are putting in to this.
Now when you say Memento has access to libraries... You do mean only libraries that are in the cloud, correct? And do you mean the full contents of the library or just the structure?
If I don't use the cloud for any libraries and especially if I use encryption then I should really not have any concerns about any security issues, right?

You mentioned and internet-less phone.... where did you get that? I've thought about pulling the sim card on my phone with Memento since it actually isn't used for that purpose... however it still has wifi capabilities without it.
I have many uses for Memento that security isn't an issue for but I was interested in keeping a library of passwords and such but I think I'm going to go your route and keep it on paper like I've done for I don't even know how many years now...also with some slight encryption on the more sensitive items such as credit cards.
Its sad that the technology we embrace each day and wouldn't want to be without could do so much actual harm in the wrong hands... especially when those hands could acquire the information from 1000's of miles away.

[Eugene Kartoyev]

Der Hof,

here is what we have

# General Security
(Memento Statement: We use Google Analytics to collect anonymous usage data to help improve our app and services. The information we obtain from Google Analytics is not personally identifying, nor is it combined with information from other sources to create personally identifying information.
Detailed information on how these services handle the collected data can be found in the Google partners privacy policy. - http://mementodatabase.com/#privacy_policy)

It is true. Google does not provide any identifiable information, except for such data as: number of users, crash reports, name and Android version of the telephone where the crash happens.

# Your questions

## Point 1

> Now when you say Meme­nto has access to lib­raries... You do mean­ only libraries that ­are in the cloud, cor­rect? And do you mean­ the full contents of­ the library or just ­the structure?

(Memento Statement: The privacy of your data — and it is your data, not ours! We’ll only ever access your account to help you with a problem or squash a software bug. We’ll never open any uploaded files unless you ask us to. You may remove your email address and data by removing your account on all devices connected to Memento Cloud. When you remove your account, we'll ensure that nothing is stored on our servers past 30 days. - http://mementodatabase.com/#privacy_policy)

This implies that yes. Full contents of the library are available to the developer. He promises to open it only if you ask him to, in order to correct an error. If you decide to remove your data - it is fully cleared within 30 days.

## Point 2

> If I don't use the cl­oud for any libraries­ and especially if I ­use encryption then I­ should really not ha­ve any concerns about­ any security issues,­ right?

(Memento Statement Libraries may be protected using password protection and may be encrypted using AES-128. A single master password is used for restricting the access to libraries.
In an encrypted library, only string fields of the entries are encrypted.
If you forget your master password, it will be impossible to recover it, and you will not be able to decrypt your data. http://wiki.mementodatabase.com/index.php/Library_Protection says:)

Vasiliy explained to me that your password is used to calculate the hash and then this hash is used to make encryption. As it says in Memento, encryption is AES 128.

Now, the way it is done. AES encryption requires a secret key (internal password) of 16 bytes (or 128 bits). So, Memento calculates the hash of the password you provide. SHA-hash makes up a string of 20 bytes. Then, 16 bytes are taken from this hash and used as the secret key. The 16 byte password derived from your password is considered as strong as it could only be.

Vasiliy explained that all operations are made only after calculation of the hash (secret key) based on the password. This password is never transmitted to anywhere and is stored only in your device.

That means that Vasiliy does not have access to string fields in Memento if the library is encrypted. He also stated that if you lose your password - it will be impossible to decript the file or restore the password. Well, this is not entirely true. It is possible to break into your library, and it will take as little as 300 years of modern computer's operations. So, if your data is valid in 300 years' time, then it is very dangerous to keep it in Memento.

## Password issue

> You mentioned and int­ernet-less phone.... ­where did you get tha­t? I've thought about­ pulling the sim card­ on my phone with Mem­ento since it actuall­y isn't used for that­ purpose... however i­t still has wifi capa­bilities without it.

I use an old-old phone which can read and write text information on sd-card. Not Memento.

> I have many uses for ­Memento that security­ isn't an issue for b­ut I was interested i­n keeping a library o­f passwords and such ­but I think I'm going­ to go your route and­ keep it on paper lik­e I've done for I don­'t even know how many­ years now...also wit­h some slight encrypt­ion on the more sensi­tive items such as cr­edit cards.

I also prefer to do that. There are such things as phishing. It usually means that someone sends you a letter, telling you that there is some trouble with your account and you need to enter it again. Then, the letter redirects you to a malicious site, which looks identical to the good site, where you are asked to enter the password. You enter the password - and then your data is exposed.

Working with bank cards, I specifically ask in the bank to allow any operation on my account only after sms confirmation sent to the bank from the old telephone which does not have internet access.

I know a user who keeps his passwords in Memento. He never had any problems. I preferred not to. Basically, because I was not sure about the security algorithm. Now, knowing that Memento uses AES - I consider it safe to keep secret data (including passwords) in Memento, if your telephone is not infected by viruses. The only possible risk would be that the developer could inject the password-stealing code himself. It may be dangerous for the developer, however.

Programs in Android are written in Java. It is decompilable, so someone in Google or outside, if there is a suspicion, may decompile it and look at the suspicious part. It is difficult however for a human, so Google Developer console has an automatic verification of the code. It analyzes not only suspicious activity, but also personal data collection (passwords, contacts, sms redirection), copyright content, like pictures, icons etc. When the developer posts a new update, the machine verifies the code for typical phishing and copyright-violation signs. If the app does not have any signs, it is released in about 20 minutes. If there are some signs, the release is delayed for a few days. The code is then validated by humans. The code also passes random close checks with long release delays once in a while. It is not a guarantee that the phishing activity is always detected, and it may take some time (up to a few months) for Google to detect it. If Google finally detected this type of activity, then this application would be banned from Google Play. It would mean a lot of trouble for the developer.

1. He will lose all the money he did not collect yet.
2. His program and program name will be bannned.
3. His account will be shut.
4. His banking details will be rejected.
5. His IP will be blocked.
6. If the application uses some typical code, it will be detected and any attempt to post the application under a different account or from a different IP will be blocked.

The only resort he will have is to use somebody else's account, computer, IP, internet provider, bank card and he will have to rewrite the whole code to make it different from what he had.

In fact, bans happens quite often - especially to programs that offer secret recording of talks or camera.

The developers then beg Google to unlock their account, but in return they receive a machine-generated reply, stating -- "Your account was blocked due to violation of this and that. We are unable to unblock your account until we see that you managed to eliminate the violations." (Period) No other correspondence is supported, no matter how hard you try to contact them.

If you commit a terrorist crime, the developer may be approached by security services asking to break into your account. If you remember, this happened once to Apple, when FBI or someone asked to reveal the account details. Apple refused. Well, I believe, they mainly refused because they can't.

The same about Vasiliy, if he says he does not have your password (he says he doesn't - and he was never detected to have, proof: 6 years in Google Play), I doubt he would be able to break into your information after AES-encryption. AES encryption is allowed for US Government encryption of documents classified "Secret" (The design and strength of all key lengths of the AES algorithm (i.e., 128, 192 and 256) are sufficient to protect classified information up to the SECRET level. TOP SECRET information will require use of either the 192 or 256 key lengths - https://en.m.wikipedia.org/wiki/Advanced_Encryption_Standard). If the developer decides to phish into your data and gets caught -- then he is into a big trouble.

Note however, that there may be other malicious applications trying to get your data. So, it is generally safe to trust your data to your device,

1. If your phone is not rooted.
2. If you have an anti-virus installed.
3. If you use programs from official app stores, such as Google Play.

Even any case, I avoid programs that may scan keyboard, such as Tasker, for example. Or, at least, I disable them. Everything else depends on the user's personal prudence, not to provide passwords to phishermen.

[Der Hof 2007]

So just to confirm a couple things.

If I put something in the cloud then Vasya or whomever can have access to it? You mention he can access to aid in troubleshooting but there is nothing to let it be accessed on my phone, correct?... I WOULD have to upload to the cloud?
BUT, even if I uploaded to the cloud if I password protected it then still no one would have access.... I guess if you are requesting assistence you have to temporarily remove you password?

So as long as I avoid the cloud then my libraries are not being sent anywhere and are not accessible to anyone without my knowledge?

If what I mention above is correct and no one has access to my libraries without the cloud then I could probably safely make a passwords library but probably still wont.
I probably don't have many of the general concerns with this phone that many people would I guess.
This phone is more of an entertainment/utility phone. I have music/videos/pics on it and use a few game apps. No phone calls... moderate internet... minimal email if any...I understand about phishing... Even if I got an email that I though was legit from a credit card company or anything important I would certainly not click any links inside the email. I would simply use my browser bookmarks and go to a URL I know is valid... If they meant for to get a message it would be on my account page.

My phone isn't rooted.... running anti-virus.... only buy from Google Play and don't use apps that make me use excessive absurd permissions.

So as long as I understand you correctly and I avoid the cloud then I shouldn't have to worry about anyone having any access....

[Bill Crews]

I believe this to be true.

[Eugene Kartoyev]

I will join Bill in agreeing with the safety of Memento.

I read somewhere, around 9% of new apps uploaded to Google Play have signs of violating privacy - by unauthorized uploading of data (in most cases, allegedly, with the purpose of trying to understand the client better - for more targeted ads, for example). They get blocked at their start.

Every time I add a new element borrowed from a third party (picture or java-library), the release is delayed. Supposedly, due to additional verification of illegal content - copyright, pornography etc.

Unrooted state, downloading proven apps from Google Play and antivirus highly contribute to the good app behaviour.

I tried writing an app for my own use to scan keyboard for keystroke combinations to be expanded, (like you type: "br" and it would expand to "best regards"), the antivirus blocked it, because it was not properly validated and contained signs of trojan code. It got me annoyed - the antivirus accused me of hacking my own self. But, at least I know it works.

In addition to that, millions of people trust Android. Each case of information leak is a loud case. Besides, most of people's information - like your correspondence, passwords to emails and sites - represent no interest and is not worth slowing down the device, consuming traffic and the hacker's "effort", who should upload it somewhere, store it and read / analyze it with the purpose of taking advantage of it, with little chances for any tangible success, and highly jeopardizing his developer account.

Well, it would be a different story if you were Angela Merkel, of course... But not if you are a mere mortal.

[Bill Crews]

To be clear, I said I believe that what Der Hof stated in his post is true. I'm not prepared to take a stand on the overall safety of Memento, though by using it as I do, I implicitly trust it to that degree.

[Eugene Kartoyev]

Well, this does not contradict to what I wrote. Thank you, Bill, for clarification.

[Bill Crews]

Agreed.