So are you saying I could use authorization service to store things with the user's authorization and get them back without the user's authentication? If so, is there an example app I can look into and figure it out? Basically my means of AES is to prevent the user from changing the settings without the application and being an administrator.
On Dec 30, 2009, at 5:06 PM, Ken Thomases wrote: > On Dec 30, 2009, at 3:56 PM, Mr. Gecko wrote: > >> It's ether that you don't understand what I'm doing, or I don't understand >> that. Here is the full story. >> >> I am using Apple's SFAuthorizationView to find out if the user is an >> administrator. If they are an admin, I allow them to modify the settings, >> when they save I am saving the settings in AES with 2 keys, 1 randomly >> generated and saved in AES encrypted by the first key and the other in the >> binary. Although nobody has cracked it yet, I can't have the first key in >> the open. > > The question is: is the AES encryption stuff central to what you're trying to > achieve, or is it just your way of enforcing the parental controls? > > If it's the latter, then you may be able to ditch the encryption scheme > entirely and use Authorization Services to replace it as the means for > implementing parental controls. Authorization Services is not _just_ about > proving that a user is an administrator or acquiring system privileges. You > can also use it to make a self-restricted app, like one which implements > parental control. > > Regards, > Ken >
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Cocoa-dev mailing list (Cocoa-dev@lists.apple.com) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com
