Allow keychain entries to be timebombed
| Originator: | m.hanauska | ||
| Number: | rdar://19530331 | Date Originated: | Markus Hanauska20-Jan-2015 |
| Status: | Open | Resolved: | |
| Product: | iOS | Product Version: | 8 |
| Classification: | Enhancement | Reproducible: | Always |
Summary: Sometimes apps want to store highly sensitive data in the keychain that will only stay there for a limited amount of time. The problem is that the app itself can only enforce that as long as it is running. As iOS may kill background apps at any time, it often has no way to remove the data once the time limit has been reached. However iOS could probably do that. Thus keychain entries should get a timebomb date (or a relative lifetime) and as soon as that date is reached/lifetime is expired, iOS delete that keychain entry on its own even when the app is not running at that moment. Note: It is not sufficient to just hide it from the app, for real security, it must be physically and unrecoverably deleted. Steps to Reproduce: n/a Expected Results: n/a Actual Results: n/a Version: n/a Notes: Configuration: n/a Attachments:
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!