IOCipher provides a virtual encrypted disk for Android apps without requiring the device to be rooted. It uses a clone of the standard
java.io API for working with files, so developers already know how to use it. Only password handling, and opening the virtual disk are what stand between the developer and working encrypted file storage. It is based on and SQLCipher, and designed to work with CacheWord for handling the keys and passwords.
IOCipher is ultimately based on transactions in SQLite, which means that it does not require being mounted in the normal sense. There is no open state once a transaction is complete. Each read or write operation is a self-contained SQLite transaction, so if the file system is forcably quit, SQLite’s transactions prevent the whole file system from being corrupted. This is important in Android since an
Service can be killed at any moment without warning.
IOCipher is a cousin to SQLCipher-for-Android since it is also based on SQLCipher and uses the same approach of repurposing an API that developers already know well. It is built on top of libsqlfs, a filesystem implemented in SQL that exposes a FUSE API.
- Secure transparent app-level virtual encrypted disk
- No root required
- Only three new methods to learn:
VirtualFileSystem.mount(dbFile, password), and
- Supports Android versions 2.1 and above
- Licensed under the LGPL v3+
Adding IOCipher to your App
Here are the things you need to do in your code to make it use IOCipher encrypted storage for all of your app’s file storage:
- manage the password using Cacheword or whatever works for you
- get the VFS singleton using
- on first run, create the container file with a password using
- mount the container file with a password using
- replace the relevant
java.ioimport statements with
import info.guardianproject.iocipher.File; import info.guardianproject.iocipher.FileOutputStream; import info.guardianproject.iocipher.FileReader; import info.guardianproject.iocipher.IOCipherFileChannel; import info.guardianproject.iocipher.VirtualFileSystem; import java.io.FileNotFoundException; import java.io.IOException; import java.io.InputStream; import java.nio.channels.Channels; import java.nio.channels.ReadableByteChannel;
For more detailed examples, see IOCipherExample, IOCipherThreadTest, and IOCipherTests. To start from scratch, follow the instructions on starting with SQLCipher-for-Android, then download IOCipher and add it to the
libs/ folder of that new project.
Here you can get the complete IOCipher jar and native library files, ready to drop right into your project (for MIPS, you need to build from source):
If you are interested in experimenting with the underlying FUSE library, you can download the optional
libsqlfs source tarball:
Source Code Repositories
- all you need for your project: https://github.com/guardianproject/IOCipher
- the test suite: https://github.com/guardianproject/IOCipherTests
- a simple example file manager app: https://github.com/guardianproject/IOCipherExample
- a very simple test app: https://github.com/guardianproject/IOCipherThreadTest
- the core: https://github.com/guardianproject/libsqlfs
- only one active mount per-app is supported
- single thread/sequential access is the preferred way of using IOCipher
- multi-threaded access possible (potentially unstable under extremely high write load)
- VFS now has beginTransaction and completeTransaction to optimize performance
- parts of java.io not currently supported: vectored I/O, memory-mapped files
Please report any bugs or issues that you have with this library! We want to hear from you. Help us improve this software by filing bug reports about any problem that you encounter. Feature requests and patches are also welcome!