I spoke at DevNexus 2017 about how to get cryptography right on Android, and how to work with the fingerprint API to ensure robust security is in place ,especially for apps that need to store authentication details (like an authentication token).

title: Keeping Android Secrets Secure with Fingerprint Authentication and the Keystore

description: Getting cryptography right on Android is challenging. There are code examples without much explanation about what is really going on. In this talk you will learn the details you need to implement a subset of Android security: user authorization.
We will discuss how to implement robust user authorization using the new Fingerprint API and the Android Keystore,
and we will explore how to correctly use the Keystore to keep your application secrets secure.

Here are the slides from my DevNexus 2017 Presentation entitled "Keeping Android Secrets Secure with Fingerprint Authentication and the Keystore".

Github code here: android securebank example