What is the best method for keeping OAuth tokens secure when used in apps? Currently developing for Android if that makes a difference. It seems like it will always be possible for the user to get the tokens and potentially use them maliciously and could get the Twitter developer account suspended.
