[sparaker]

No you'd still need the crypt key to decode the data. Why do you assume this is stored on the device?

[Someone]

OK. Let's assume that key lives on Google's servers. Then, Google must send it back to the Android device that it cannot trust unencrypted (possibly in a httpd session, but that is irrelevant for this discussion. The pipe may be secure, but you poor the data in a pool that isn't secure)

[jahewson]

Where else would the key be?