MASTG-BEST-0014: Preventing Screenshots and Screen Recording
Ensure the app hides sensitive content, such as card numbers and passcodes, from screenshots, screen recording, nonsecure displays, task switcher thumbnails, and remote screen sharing. Malware may capture screen output and extract confidential information. Protect on screen keyboards or custom keypad views as they may leak keystrokes from passcode fields. Screenshots can be saved in locations accessible to other apps or a local attacker.
Setting FLAG_SECURE on the window prevents screenshots (or appear black), blocks screen recording, and hides content on nonsecure displays and in the system task switcher.
FLAG_SECURE
FLAG_SECUREYou can follow the official documentation to implement FLAG_SECURE in your app, see "Secure sensitive activities".
Tests¶
MASTG-TEST-0289: Runtime Verification of Sensitive Content Exposure in Screenshots During App Backgrounding MASTG-TEST-0293: setSecure Not Used to Prevent Screenshots in SurfaceViews MASTG-TEST-0291: References to Screen Capturing Prevention APIs MASTG-TEST-0292: setRecentsScreenshotEnabled Not Used to Prevent Screenshots When Backgrounded MASTG-TEST-0294: SecureOn Not Used to Prevent Screenshots in Compose Dialogs