Reputation: 447
Store data securely in the device till app is present in iOS
I want to store one key value pair very securely in the device. But, I want to persist the data till app in present in the device. Once app is deleted this data also should get removed.
NSUserdefault is not very secure.
Keychain is another option as it is secure but it persist data even after app will get deleted from the device.
How should I proceed. Any help?
Upvotes: 1
Views: 182
Answers (2)
Reputation: 447
I have used one flag which is stored in keyachain that will set to true whenever app will get launched for the first time.
- When my app will get launched for the first time this flag will not present. I will store this flag in keychain with value true and I will store my secure information in the keychain.
- If my application is launched for the very first time and flag is present then I will delete the flag and data first and then proceed with step 1.
In this way, I have solved my problem of app is using the already stored data in keychain even after installing and launching for the first time. If user will delete the app, keychain will contain my secure data but that will be of no use as it is encrypted with random key.
Upvotes: 0
Reputation: 299355
Create a random encryption key. Store the encryption key in keychain. Encrypt the data with the encryption key. Store the encrypted data wherever is convenient within the app's directories. If you want to preserve it across restores, then store it somewhere that is backed up (such as Library/Application Support or in NSUserDefaults). If you don't want it preserved across restores, store it in Library/Caches (you may need to do some research on that; "the system may delete the Caches directory on rare occasions when the system is very low on disk space" so there is a danger of losing the data, but you had to deal with that in case of restore anyway). You also can use NSURLIsExcludedFromBackupKey to avoid backing it up.
When the app is deleted, the encrypted data will be deleted. You will leave the random key in the keychain, but this is just a random number of no value.
Upvotes: 2
Related Questions
- How to store encrypted data by SecureEnclave persistently
- How to store critically sensitive information such as secret, key, token, encryptionKey in iOS application
- How to store data securely on iOS when background mode access is required?
- Data encryption in iOS
- How would you keep secret data secret in an iPhone application?
- Secure App Data on iPhone
- iOS how to store data even if the app is closed
- how to store secure application data in iphone internal storage
- Safe way to save encryption keys in iOS
- Saving private data securely on device when user exits application