On 30 Dec 2009, at 17:59, Mr. Gecko wrote: > This is basically for Parental Controls, I know I could ask for a password at > first, but then any kid could grab a copy and set their own password. What > I'm doing is I'm asking for them to authenticate with Mac OS X, and then once > they are authenticated, I'm allowing them to set settings that are encrypted > with a key in AES.
Perhaps a better way would be to ask for a password once the user is authenticated, and then generate an AES key using that password, instead of storing encryption key inside your program. With you current scheme, if anyone breaks your 'common' key, everyone will be able to circumvent your parental protection. -- Gleb Dolgich http://pixelespressoapps.com_______________________________________________ Cocoa-dev mailing list (Cocoa-dev@lists.apple.com) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com
