Re: SSCrypto Framework
Re: SSCrypto Framework
- Subject: Re: SSCrypto Framework
- From: Jason Coco <email@hidden>
- Date: Fri, 20 Jun 2008 16:53:42 -0400
There would be a couple of ways that you could do it... you could
place your certificate in the System keychain and then add it so that
it can be read by your application anytime. This should work okay and
if you do this during installation, the user should only have to
authenticate then. But, the user could mess with this... delete the
certificate or remove your application from the list of applications
that can read it without authenticating...
The other option is to just create a private keychain that you put
anything you want into and lock it yourself. It would get deployed
with your application bundle and only your application would ever
access it. Don't even give the user the key so they can't mess with it
at all (Microsoft uses this strategy with its distribution of Office
2008).
/jason
On Jun 20, 2008, at 15:06 , Trygve Inda wrote:
Yeah, I understand that... you don't need to actually buy a
certificate for that. You can just install your certificate that you
generate yourself and then use it internally to check the integrity
of
your data files or whatever else you'd like to do with it.
How would I go about doing this... And does the user have to do
anything
(like authorize with a password)? I want to sign/encrypt on my end
and have
my app decrypt with no user action required - so it is completely
transparent.
Thanks,
Trygve
_______________________________________________
Cocoa-dev mailing list (email@hidden)
Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden