Reputation: 197
Save username-password with iOS Keychain Services., how and how much safe?
I need to save User Name and Password in Keychain Services.. I am planning to place a round rect button in IB. On pressing of which the User name and Password would be saved in Keychain Services., so that when user kills the application and tries to login again after some time, they do not need to enter their login details again
Upvotes: 0
Views: 679
Answers (1)
Reputation: 114
Encryption will give you some security. The problem is your program would also have to decrypt the password, which means it must have the key stored in it somewhere. This will make it vulnerable to reverse-engineering. A better approach is to use an one-way function (such as a hash) on the password and store that hash value. When a user enters a password, you then apply the one-way function to the password and compare the result to the stored value. In this manner, the password cannot be compromised (well, there's always a dictionary attack, but that's a matter of password strength).
Upvotes: 2
Related Questions
- iOS: How to store username/password within an app?
- Save username-password with NSUserDefault, how and how much safe?
- Safe to to store data in the keychain?
- NSUserDefaults or keychain is better to save username and password in iPhone app
- Using keychain to store username and password in xcode 4
- Is this a good practise to store and get passwords from the Keychain in objective-c?
- Keychain - Secure Data Storage
- How to store manually in ios keychain?
- How do I use Apple Keychain?
- Security in iPhone