search

jeroentrappers / flutter_keychain

A flutter plugin for secure storage on Android via KeyStore and iOS via Keychain
Other
56 stars 41 forks source link

Would it be possible to add support for SecAccessControlCreateWithFlags for iOS #26

Closed securit closed 10 months ago

securit commented 2 years ago

With iOS you can restrict access to the keychain based upon the device state (passcode set, unlocked, after first unlock or always) which you have implemented.

You can also require the user presence - - Allowing access only when the device is unlocked (the default) may not be secure enough in all cases. If your app provides direct control over a bank account, you can check for the presence of the authorized user at the very last minute before retrieving login credentials from the keychain. This helps secure the account even if the user hands the device in an unlocked state to someone else.

Would it be possible to add this functionality to flutter_keychain?

https://developer.apple.com/documentation/security/keychain_services/keychain_items/restricting_keychain_item_accessibility under Demand User Presence.

jeroentrappers commented 2 years ago

Please create a PR for this

Op ma 18 okt. 2021 23:52 schreef Greg @.***>:

With iOS you can restrict access to the keychain based upon the device state (passcode set, unlocked, after first unlock or always) which you have implemented.

You can also require the user presence - - Allowing access only when the device is unlocked (the default) may not be secure enough in all cases. If your app provides direct control over a bank account, you can check for the presence of the authorized user at the very last minute before retrieving login credentials from the keychain. This helps secure the account even if the user hands the device in an unlocked state to someone else.

Would it be possible to add this functionality to flutter_keychain?

https://developer.apple.com/documentation/security/keychain_services/keychain_items/restricting_keychain_item_accessibility under Demand User Presence.

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub https://github.com/jeroentrappers/flutter_keychain/issues/26, or unsubscribe https://github.com/notifications/unsubscribe-auth/AAHA6WVKDH5A4XQX7SK3RL3UHSJLDANCNFSM5GHUYDNA . Triage notifications on the go with GitHub Mobile for iOS https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675 or Android https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub.