• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: Encrypting Binary Strings
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Encrypting Binary Strings

  • Subject: Re: Encrypting Binary Strings
  • From: Gleb Dolgich <email@hidden>
  • Date: Wed, 30 Dec 2009 21:32:16 +0000
A teenager could also crack your app and use the key he found to gain access. If you want to prevent that, I guess you need to rethink the way you store access credentials. I wonder how [Snow] Leopard Parental Controls do that.

You should also use Mac OS Keychain API and not reinvent the wheel if at all possible. I'm not an expert on Keychain, so I can't point you to the right API calls, sorry.

--
Gleb Dolgich
http://pixelespressoapps.com

On 30 Dec 2009, at 19:23, Mr. Gecko wrote:

> But then the child/teenager, if they know about keychain they could check it and find the key. Unless there is a way to prevent them from seeing it.
> Speaking of keychain, can you recommend me a good public domain keychain framework? I currently wrote my own and on some computers, the keychain didn't work, the only thing they all had in common was 1password.
>
> On Dec 30, 2009, at 1:19 PM, Gleb Dolgich wrote:
>
>> You could store the generated key in a keychain. This way you wouldn't have to ask for the password to access the encryption key.
>>
>> On 30 Dec 2009, at 18:58, Mr. Gecko wrote:
>>
>>> But then how would I get the data? If the key has to do with the password, then how can I get the parental settings and respond to them.
>>>
>>> On Dec 30, 2009, at 12:51 PM, Gleb Dolgich wrote:
>>>
>>>> Perhaps a better way would be to ask for a password once the user is authenticated, and then generate an AES key using that password, instead of storing encryption key inside your program. With you current scheme, if anyone breaks your 'common' key, everyone will be able to circumvent your parental protection.
>>
>

_______________________________________________

Cocoa-dev mailing list (email@hidden)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
References: 
 >Encrypting Binary Strings (From: "Mr. Gecko" <email@hidden>)
 >Re: Encrypting Binary Strings (From: Todd Heberlein <email@hidden>)
 >Re: Encrypting Binary Strings (From: "Mr. Gecko" <email@hidden>)
 >Re: Encrypting Binary Strings (From: Gleb Dolgich <email@hidden>)
 >Re: Encrypting Binary Strings (From: "Mr. Gecko" <email@hidden>)
 >Re: Encrypting Binary Strings (From: Gleb Dolgich <email@hidden>)
 >Re: Encrypting Binary Strings (From: "Mr. Gecko" <email@hidden>)

  • Prev by Date: Merging changes across NSManagedObjectContexts
  • Next by Date: Re: Encrypting Binary Strings
  • Previous by thread: Re: Encrypting Binary Strings
  • Next by thread: Re: Encrypting Binary Strings
  • Index(es):
    • Date
    • Thread