所以我正在开发一个测试应用程序,可以将文件本地下载到应用程序文件存储沙箱中。 其中一些文件可能很敏感,需要加以保护。 我的应用程序有一个登录机制,所以如果你没有登录,你将无法访问这些文件,所以我主要关注的是能够嗅探内容(也许是在越狱设备上?)。
现在我想知道保护这些文件的最佳方法是单独加密每个文件吗? 或者也许有一种加密整个沙箱的方法? 或者它是默认加密的? 有没有人曾经做过这样的事情?
我为一长串问题道歉,我想在做出设计决定之前尽可能多地收集有关这方面的信息......
谢谢!
So I am working on a test app that downloads files locally to the app file storage sandbox. Some of these files may be sensitive and need to be protected. My app has a login mechanism, so you wouldn't be able to access the files if you didn't have a login, so my main concern is the ability to sniff the contents (Perhaps on a jailbroken device??).
Now I was wondering if the best method to protecting these files is to encrypt each one independently? Or perhaps there is a way to encrypt the whole sandbox? Or is it encrypted by default? Has anyone ever done anything like this before?
I apologize for the long string of questions, I am trying to gather as much info about this as possible before making a design decision...
Thanks!
最满意答案
您可能希望查看iOS 4及更高版本中的文件保护机制。 这提供了一种将文件标记为“受保护”的方法,因此它将始终以加密方式存储在磁盘上,只有在设备解锁时才能访问(使用密码)。
另见这个问题
You might want to look into the File Protection mechanisms in iOS 4 and later. That provides a way to mark a file as "protected" so it will be stored encrypted on disk at all times, only accessible when the device is unlocked (with a passcode).
See also this question
更多推荐
发布评论