rsa - How to store password on Android -


i looking understand android keystore purpose of storing passwords on device. (https://developer.android.com/training/articles/keystore.html)

in article says "use android keystore provider let individual app store own credentials app can access." want.

so think way work like: 1) generate rsa key

2) store privatekey in keystore

3) store publickey in shareprefs

4) encrypt password using publickey

5) encrypt password using privatekey.

however think misunderstanding because article not show

1) how save privatekey keystore (i don't see api showing how keystore added key)

2) not show how decrypt data privatekey

infant why article talking "use privatekey in keystore create signature on data." mean create signature on data ??? (i want decrypt data privatekey). , why want verify "signature made privatekey".

so lost @ point ... article started me of in right place end confused trying achieve.

can suggest if trying makes sense @ ? or should save public , private key in own db ? (not security there best can given requirement of storing password on device).

many thanks

rgds !!!!

i quoting line using internal storage section of http://developer.android.com/training/articles/security-tips.html default, files create on internal storage accessible app. protection implemented android , sufficient applications.

now encryption: keystore api dealing encryption of data. , keys used secure communication , not storing password. passwords irreversible hashes or maps. , not require decryption needs matching.

for example: communication if send data encrypted other party involved in communication needs know data required decryption key. if have sent "hello crypted" receiver must know sent "hello crypted" message.

for password if enter passphrase or passkey needs matched stored counterpart. if "pass123" password stored "rdi#$$+!@/b" when enter password when process checking algorithm should match stored value , authenticated not required generate "pass123".

so, application can use mechanism(that generates unique , irreversible hash) generate unique key/hash when password entered , store in app data.


Comments

Post a Comment

Popular posts from this blog

c++ - Difference between pre and post decrement in recursive function argument -

i have following sample code used pre-decrement void function(int c) { if(c == 0) { return; } else { cout << "dp" << c << endl; function(--c); cout << c << endl; return; } } this function give output input 4 : dp3 dp2 dp1 dp0 0 1 2 3 but when use post decrement void function(int c) { if(c == 0) { return; } else { cout << "dp" << c << endl; function(c--); cout << c << endl; return; } } output goes in infinite loop dp4 can explain me in detail why happens ? this happens because function(c--) called same value of c , when finishes c decremented. recursively called, hence called same value no chance of return , hit stack overflow error. assume this, int x = 1, y = 0; y = x++ result y == 1 , x == 2. if y = ++x , bot x , y 2.
Read more

php - Nothing but 'run(); ' when browsing to my local project, how do I fix this? -

i added new project. made mistake in projectname.conf file in sites-available apache2, led me reinstalling apache2. after reinstalling , re-enabling projects on every page of every project .. <body> run(); </body> .. i've run composer update, restarted service, restarted pc, checked config files, tried disabling new project. there nothing in error log, , access.log: 127.0.0.1 - - [15/may/2015:01:40:47 +0200] "get / http/1.1" 304 181 "-" "mozilla/5.0 (x11; ubuntu; linux x86_64; rv:38.0) gecko/20100101 firefox/38.0" maybe i'm forgetting apache2 reinstall? don't think did different last time installed it. looks haven't setup php correctly. take @ this great guide , maybe you're forgetting link php config apache2.
Read more

php - How can I echo out this array? -

i don't know how go grabbing data in variable , put foreach loop. class tree{ private $info = array( array('name'=>'jim','state'=>'nu','company'=>'nu','phone'=>array('cell'=>'5615111111','office'=>'5611111111'),'email'=>array('primary'=>'exs@example.com','ex@there.com')), array('name'=>'joe smith','city'=>'phoenix','phone'=>'4805551111','email'=>'jsmith@some_email.com'), array('name'=>'john doe','city'=>'chandler','company'=>'doe co.','email'=>array('jdoe@gmail.com','personal'=>'email@email.com'),'phone'=>'6025550002') ); } if you're inside of class, can access private variable using $this->variablename . example, i
Read more