On Dec 30, 2009, at 3:56 PM, Mr. Gecko wrote:

> It's ether that you don't understand what I'm doing, or I don't understand 
> that. Here is the full story.
> 
> I am using Apple's SFAuthorizationView to find out if the user is an 
> administrator. If they are an admin, I allow them to modify the settings,  
> when they save I am saving the settings in AES with 2 keys, 1 randomly 
> generated and saved in AES encrypted by the first key and the other in the 
> binary. Although nobody has cracked it yet, I can't have the first key in the 
> open.

The question is: is the AES encryption stuff central to what you're trying to 
achieve, or is it just your way of enforcing the parental controls?

If it's the latter, then you may be able to ditch the encryption scheme 
entirely and use Authorization Services to replace it as the means for 
implementing parental controls.  Authorization Services is not _just_ about 
proving that a user is an administrator or acquiring system privileges.  You 
can also use it to make a self-restricted app, like one which implements 
parental control.

Regards,
Ken

_______________________________________________

Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)

Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com

Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com

This email sent to arch...@mail-archive.com

Reply via email to