Re: probably OT: using encrypted disk images with NSTask and hdiutil
Re: probably OT: using encrypted disk images with NSTask and hdiutil
- Subject: Re: probably OT: using encrypted disk images with NSTask and hdiutil
- From: Jens Alfke <email@hidden>
- Date: Thu, 22 May 2008 07:43:37 -0700
On 22 May '08, at 3:32 AM, Ruotger Skupin wrote:
To protect sensitive user data I attach an encrypted disk image and
store the application data there.
Interesting. FYI, if the data is fairly small you can store it
directly in a Keychain item(s), but for large amounts of data a disk
image is a good idea.
-certificate certificate_file
specify a secondary access certificate for the
image being created.
-pubkey PK1,PK2,...,PKn
specify a list of public key hashes in ASCII hex
for the image being created. The hash(s) will be used to locate a
public key used to protect an encrypted image.
Is there any example code how to do this in Cocoa?
I don't know, as I haven't used hdiutil. None of the relevant
technologies have Cocoa APIs, so if there are examples they're most
likely C code, but you could use them in a Cocoa app.
To work with certificates or public keys you'll need to use the
Keychain or CDSA (or openssl) APIs. I've found the 3rd party open-
source Keychain.framework (keychain.sourceforge.net) invaluable for
working with those, as it offers a lot of high-level Cocoa wrappers.
Furher discussion should probably go to either the filesystem-dev or
apple-cdsa mailing lists. (The latter, despite its cryptic name,
covers crypto and security APIs.)
—Jens
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Cocoa-dev mailing list (email@hidden)
Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden