Touch ID authentication fails when unlocking screen

wultra / powerauth-mobile-sdk

PowerAuth mobile SDK adds capability for authentication and transaction signing into the mobile apps (iOS, tvOS, watchOS, Android).

https://www.wultra.com/product/wultra-mobile-security-suite/

Apache License 2.0

33 stars 13 forks source link

Touch ID authentication fails when unlocking screen #9

Open petrdvorak opened 7 years ago

petrdvorak commented 7 years ago

Steps to reproduce:

Invoke login via Touch ID
Press Home button

=> 'errSecAuthFailed' is triggered, invalid signature is computed

This is caused by an ssue in iOS SDK - we are unable to distinguish errSecAuthFailed caused by invalid authentication (wrong finger) and the same error caused by locking screen / pressing Home button.

We reported this issue as rdar://30141672.

hvge commented 2 years ago

Upcoming release 1.7.5 will provide a proper workaround in form of enhanced authenticateUsingBiometry() method. The method fully handle all such situations internally.

The issue will be properly resolved in future 1.8.x release, by introducing asynchronous API for signature calculations (see #497)

hvge commented 2 years ago

Our updated documentation provides a temporary workaround for this issue.

hvge commented 3 months ago

Moved to future 1.10.0 release