Application access for framework created files & keys

I'm creating a framework for iOS that needs to store files and keys (mostly symmetric keys). I was wondering if I can prevent the parent app from accessing:

  1. Keys/SecItems I create in Keychain

  2. Files I create/store on the device




Up vote post of Craz1k0ek Down vote post of Craz1k0ek
650 views
Posted by
Craz1k0ek
Reply
Add a Comment

Accepted Reply

I was wondering if I can prevent the parent app from accessing

No. The access control for each item is determined by the calling app, with no referenced at all to the calling framework.

You could wrap the keys with a ‘secret’ that’s embedded in your framework. It’s not at all secure, but it will block casual access.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@apple.com"
Posted by
eskimo
Up vote reply of eskimo Down vote reply of eskimo
Post marked as solved
Add a Comment

Replies

I was wondering if I can prevent the parent app from accessing

No. The access control for each item is determined by the calling app, with no referenced at all to the calling framework.

You could wrap the keys with a ‘secret’ that’s embedded in your framework. It’s not at all secure, but it will block casual access.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@apple.com"
Posted by
eskimo
Up vote reply of eskimo Down vote reply of eskimo
Post marked as solved
Add a Comment