> On Jun 26, 2017, at 12:59 PM, Jens Alfke <j...@mooseyard.com> wrote: > > >> On Jun 26, 2017, at 9:50 AM, Alex Zavatone <z...@mac.com >> <mailto:z...@mac.com>> wrote: >> >> You can use the iExplore app to look in the Documents folder of any device >> you attach to your Mac. > > But you can only attach a device to your Mac if the device is unlocked, since > you have to OK the “Do you trust this computer?” alert. > As recent court cases have shown, unlocking an iOS device against the owner’s > will is nearly impossible. > >> Also, data protection SUCKS because it locks the files if the app goes in to >> the background, basically suspending any file based background operations >> like sql db updates. > > It does this by default, but you can alter those settings if you need > background access to certain files, basically trading some security for > greater access.
We had 3 programmers each with 6 years of iOS development who couldn’t figure that out. We got bitten bad because of that. >> Thanks to the help of Chris Thorman, I was able to update an AES256 hmac >> method to work with UTF-8 char sets. We use this for data security over >> http. > > It’s much easier to just enable SSL/TLS on the HTTP server. (Though I realize > there are cases where you don’t have control over the server, or > circumstances prevent deploying HTTPS.) We already do. >> Now, it might be overkill or just bad design, but we use a CoreData db with >> transformable property and encrypt the data stored. > > How do you store the encryption key? Not telling. > > (Also, I hope you’re using a different IV for each record you encrypt. Sorry > to be a broken record about this, but it’s important.) > > —Jens _______________________________________________ Cocoa-dev mailing list (Cocoa-dev@lists.apple.com) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com
