[guardian-dev] First look at ICS' keystore
Hans-Christoph Steiner
hans at guardianproject.info
Fri Jul 13 13:40:02 EDT 2012
I agree, I remember looking into it and thinking that it was not very
useful to us. Feel like writing up a blog post on this?
.hc
On 07/11/2012 06:10 PM, Abel Luck wrote:
> Hey everyone,
>
> With IOCipher coming along and PSST development about to start in
> earnest, we are bearing down on the day when every app using secure
> storage annoys the user for a password (not to mention the user would
> have to remember a password for every app).
>
> There are a bunch of ideas that have been tossed out, one of which is
> inevitably "doesn't ICS have a keystore, we should look at that?"
>
> Well here's a little blogpost from the android devs about that:
> http://android-developers.blogspot.com/2012/03/unifying-key-store-access-in-ics.html
>
> TL;DR the keystore is a private key/certificate store, not a general
> purpose "store some secret data-store".
>
> If we used private-keys for everything, it would possibly be applicable,
> but it still would probably not be usable, because it also prompts for a
> password whenever data needs to be retrieved.
>
> So.. the credential management issue is still wide open.
>
> ~abel
>
>
>
> _______________________________________________
> Guardian-dev mailing list
>
> Post: Guardian-dev at lists.mayfirst.org
> List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev
>
> To Unsubscribe
> Send email to: Guardian-dev-unsubscribe at lists.mayfirst.org
> Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/hans%40guardianproject.info
>
> You are subscribed as: hans at guardianproject.info
>
More information about the Guardian-dev
mailing list