Reputation: 26527
How can I protect data using iOS on-disk encryption when the user passcode lock has not been enabled?
Question
How can I ensure data is encrypted when using NSData.writeToFile:options:error: with the NSDataWritingFileProtectionComplete?
Background research: Enabling data encyption
According to Apple documentation:
Data protection is available on most iOS devices and is subject to the following requirements:
The file system on the user’s device must support data protection. This is true for newer devices, but for some earlier devices, the user might have to reformat the device’s disk and restore any content from a backup.
The user must have an active passcode lock set for the device.
The requirements state that user must activate passcode lock for the device, this is reinforced by the following end user documentation:
Enable data protection by configuring a passcode for your device:
- Tap Settings > General > Passcode.
- Follow the prompts to create a passcode.
- After the passcode is set, scroll down to the bottom of the screen and verify that the text "Data protection is enabled" is visible.
http://support.apple.com/kb/HT4175
Similar SO Questions:
How can I find out if the iPhone user currently has a passcode set and encryption enabled? seems like the answer to this question is no longer valid.
Upvotes: 7
Views: 2925
Answers (1)
Reputation: 12085
The requirements state that user must activate passcode lock for the device, this is reinforced by the following end user documentation.
If user doesn't have any passcode enabled the encryption would be useless. The unwanted user can use the app directly then anyway.
A solution for your problem would be to manually implement encryption for app data and use a app specific password which you ask the user on every app launch.
I've seen that system at an online banking software for iOS, but I wouldn't recommend that system since it is very annoying for the user.
Upvotes: 1
Related Questions
- Enable iOS On-Disk Encryption
- Data protection on mobile devices
- How can I find out if the iPhone user currently has a passcode set and encryption enabled?
- How to react with iOS Data Protection if a user disables their passcode?
- How can I encrypt CoreData contents on an iPhone
- Data encryption in iOS
- iOS: Get iPhone passcode to generate symmetric keys for encryption
- How to encrypt files on iPhone when user does not have a passcode set?
- iPhone Authentication Password Encryption
- How to encrypt/decrypt data in Core Data?