imranansari · January 26, 2015 17:41
diff --git a/iOS Security b/iOS Security
 # TouchID

 http://www.andreas-kurtz.de/2014/10/ios-8-touch-id-local-authentication-caveats.html

 If Touch ID authentication is to be continued, perhaps it would be worth taking a look at the keychain access control lists (ACL),
 a new concept that was introduced in iOS 8. The attribute kSecAttrAccessControl can be used to define that keychain entries can be decrypted only if the user has again been authenticated using the device passcode or Touch ID (kSecAccessControlUserPresence). 
 In such cases, the Touch ID login would be more than just a worthless view. Instead, it could actually grant access to cryptographic keys.
 As, however, the keys would still be stored on the device (although in the keychain), this is merely a compromise, albeit one which could
 actually provide added value (ACL protected items are not backed up). From a security perspective, however, entering a password is still
 recommended.
	# TouchID

	http://www.andreas-kurtz.de/2014/10/ios-8-touch-id-local-authentication-caveats.html

	If Touch ID authentication is to be continued, perhaps it would be worth taking a look at the keychain access control lists (ACL),
	a new concept that was introduced in iOS 8. The attribute kSecAttrAccessControl can be used to define that keychain entries can be decrypted only if the user has again been authenticated using the device passcode or Touch ID (kSecAccessControlUserPresence).
	In such cases, the Touch ID login would be more than just a worthless view. Instead, it could actually grant access to cryptographic keys.
	As, however, the keys would still be stored on the device (although in the keychain), this is merely a compromise, albeit one which could
	actually provide added value (ACL protected items are not backed up). From a security perspective, however, entering a password is still
	recommended.
No results found