php - Secure transmission of file from client to a server -

i'm uploading encrypted file android phone server , decrypting same file in server side.

client: used http post send file server server: php encryption: triple des

i hard coded keys , iv in both client , server side. there idea how use keys , iv transmission highly secured?

thanks!

if android encrypts file prior transmitting , server decrypts on receipt, should use ssl/tls/https.

hardcoding either key or iv horribly bad practice. if hardcode key in application, can binary has key , can read message. if hardcode iv, people not have key can potentially something( iv's can public, must random)