avnc icon indicating copy to clipboard operation
avnc copied to clipboard

Published 20 hours ago verified publisher icon gujjwal00

Fingerprint unlock

Open user8446 opened this issue 2 years ago • 11 comments

Hi @gujjwal00 ,

Question: Since fingerprint auth is already a part of the app for server export, is it on the roadmap to use fingerprint auth for opening the app?

user8446 avatar Jan 30 '22 19:01 user8446

I haven't thought about it, but it can be implemented. From my personal experience, app-locks can be really frustrating, especially on Android. Most apps will prompt whenever they comes to foreground, because "app-opening" is not a clear-cut event on Android (e.g. you can directly launch a vnc:// URL with AVNC, entirely bypassing Home page/activity). This frustration may discourage users from using such feature. IMO, full app-locking is best handled by system-level apps or Android itself.

So we should consider our threat-model before implementing it.

  1. Lets assume a malicious user has access to your device.
  2. AVNC never exposes any secret in plaintext, so they cannot copy it.
  3. Export to plaintext JSON requires user-authentication as you mentioned.
  4. They can connect to a server if password is saved in AVNC.

I think last one is the only attack you may want to protect against. AVNC could require authentication before connecting to a saved server (and before changing the associated setting.)

gujjwal00 avatar Jan 31 '22 08:01 gujjwal00

Hi,

Number 4 is one I'm concerned with. I use private keys which are saved so one click and a whole system is completely exposed.

Personally I haven't had any issues with other apps fingerprint auth such as Aegis, KeePass2Android, and commercial banking and money apps such as PayPal & Venmo.

user8446 avatar Jan 31 '22 15:01 user8446

Hi @user8446 , due to some personal issues, I may not get much free time this month. So this feature will have to wait a bit.

gujjwal00 avatar Feb 05 '22 04:02 gujjwal00

No problem at all. I hope all is well.

user8446 avatar Feb 05 '22 13:02 user8446

Thanks for understanding. Yes, all is well healthwise, just some other issues need immediate attention.

gujjwal00 avatar Feb 05 '22 14:02 gujjwal00

Hi @user8446 I have started working on it. Current plan to implement a per-server checkbox titled 'Biometric lock' in Advanced server options.

  • You can use biometrics (e.g. fingerprint) or screen lock ( e.g. password, pattern, PIN) to authenticate.
  • Enabling/disabling the checkbox will require authentication.
  • Once enabled, you will have to authenticate before connection.

Any feedback is welcome.

gujjwal00 avatar Jul 16 '22 17:07 gujjwal00

Hi I think that implementation would work perfect and increase security for the users!

user8446 avatar Jul 16 '22 18:07 user8446

Here is the initial implementation: app-debug.zip

You can enable "Lock this server" in advanced server options. Please test out different scenarios, like wrong finger etc.

Some thoughts:

  • Current option is per-server. Would it not be better to have a single option in app Settings which enables biometric auth for all servers?
  • I am not too sure about "Lock this server" label, it might be confused with locking remote server.

gujjwal00 avatar Jul 21 '22 14:07 gujjwal00

I have used is as my daily driver for several days now and it works as expected.

The only thing I have a question on is a few times when the fingerprint auth appears if I delayed before authorizing I had a few times when it wouldn't connect. The issue could have been anything though such as signal since I was on mobile.

When the fingerprint auth appears it shows "connecting" in the background. Are you doing anything on the network before the auth?

user8446 avatar Jul 25 '22 12:07 user8446

The only thing I have a question on is a few times when the fingerprint auth appears if I delayed before authorizing I had a few times when it wouldn't connect. The issue could have been anything though such as signal since I was on mobile.

This should not happen. If you encounter this again, please send the logs to me.

When the fingerprint auth appears it shows "connecting" in the background. Are you doing anything on the network before the auth?

No, that's just the initial state of VncActivity. Thre are three main states: Connecting, Connected, Disconnected. Before introduction of locking, app was really connecting. But now, unlock is the first step, and rest of the stuff happen after successful unlock.

I am thinking about moving this option to app settings (in Settings => Server => Login). It would apply to all saved servers. And 'Login Auto-completion' option will now depend on new locking option being disabled.

gujjwal00 avatar Jul 25 '22 13:07 gujjwal00

You are probably right, auth for all or none should work for everyone.

user8446 avatar Jul 25 '22 22:07 user8446

Finally finished it: https://github.com/gujjwal00/avnc/commit/cb84cb271284c483a71c3ae82450a0a30de6ca67 It will be available in next version.

gujjwal00 avatar Oct 26 '22 13:10 gujjwal00

Looking forward to it, thank you!

user8446 avatar Oct 26 '22 23:10 user8446