EllipticCurveKeyPair icon indicating copy to clipboard operation
EllipticCurveKeyPair copied to clipboard

Published 20 hours ago verified publisher icon agens-no

Create a better API for handling various devices better

Open hfossli opened this issue 7 years ago • 2 comments
trafficstars

It should be easy to configure for

  • devices with SE & with passcode & with biometry
  • devices with SE & with passcode & without biometry
  • devices with SE & without passcode & with biometry (is this possible?)
  • devices with SE & without passcode & without biometry
  • devices without SE & with passcode
  • devices without SE & without passcode

Fallback to .applicationPassword etc should be easy to do and it should be hard to forget devices / setups.

#25

hfossli avatar Apr 19 '18 08:04 hfossli

I think in general it is better to try to create a key with highest security and then fallback instead of up-front trying to configure and guess the devices capabilities.

hfossli avatar Apr 19 '18 09:04 hfossli

Just a note: Setting .privateKeyUsage alone yields -25293 unless the key is stored on secure enclave

hfossli avatar Apr 23 '18 11:04 hfossli