stackoom
  简体   繁体   中英

Save username-password with iOS Keychain Services., how and how much safe?

 原文  2014-11-01 09:36:02       ios/ objective-c/ keychain

Question

I need to save User Name and Password in Keychain Services.. I am planning to place a round rect button in IB. On pressing of which the User name and Password would be saved in Keychain Services., so that when user kills the application and tries to login again after some time, they do not need to enter their login details again

1 answers

solution1
 2 ACCPTED  2014-11-01 09:40:11

Encryption will give you some security. The problem is your program would also have to decrypt the password, which means it must have the key stored in it somewhere. This will make it vulnerable to reverse-engineering. A better approach is to use an one-way function (such as a hash) on the password and store that hash value. When a user enters a password, you then apply the one-way function to the password and compare the result to the stored value. In this manner, the password cannot be compromised (well, there's always a dictionary attack, but that's a matter of password strength).

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Save username-password with NSUserDefault, how and how much safe? How to save username & password for App in iOS? How to authenticate username and password using keychain How to Save UUID in the keychain iOS? How to remove the stored username and password from keychain while uninstalling application in iOS? iOS: How can I get username/password out of keychain for function “isEqual”? How to save Name and Password details in Keychain in swift How to add another password into iOS Keychain? iOS keychain and encryption keys, how to keep safe until stored How safe is NSUserDefaults compared to KeyChain
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM