hey @Jean-Yves_Devaux. As this is your first time posting it'd be great if you could introduce yourself in this thread.
There is a write up on ODK security considerations in the docs here.
In terms of your bullet points: it would be interesting if you could clarify the "attacks" you're worried about. What would be compromised? How does someone compromise it? What could they do with it?