How to avoid reverse engineering of an APK file?

Question

I am developing a payment processing app for Android, and I want to prevent a hacker from accessing any resources, assets or source code from the APK file.<

Answer 1

Here are few methods you can try:

1. Use obfuscation and tools like ProGuard.
2. Encrypt some part of source and data.
3. Use a proprietary inbuilt checksum in the app to detect tampering.
4. Introduce code to avoid loading in a debugger, that is, let the app have the ability to detect the debugger and exit / kill the debugger.
5. Separate the authentication as an online service.
6. Use application diversity
7. Use the finger printing technique for e.g., hardware signatures of the devices from different subsystem before authenticating the device.