I want my ContentProvider to be available in my application only,
for this purpose I set the exported attribute of ContentProvider to be false
android:exported="false"
This works fine and Android throws SecurityException whenever some other app tries to access the ContentProvider
Question: Does it make sense to add "signature protection permission" as an additional protection?
The application consists of multiple processes and ContentProvider is used for inter-process communication and there is no need to communicate with other apps
Thank you
It's possible, and useful if the minimum level of your application is lower then 17 :
Because this attribute was introduced in API level 17, all devices running API level 16 and lower behave as though this attribute is set "true".