![]() ![]() ![]() In general, a client cert attests that the request came from the right device (assuming you had a secure way to set up and register the key in the first place), but does not attest which application within the device. I used 'USB device info' application, and I saw that Linux system can see the reader, but not android system (using USB Host API) I tried to connect it on my Galaxy Nexus (Jelly bean 4.1.1) and it worked. So if you're able to create a service account that is only used by your app, then it might do what you want. I have some trouble to connect a USB smart card reader on my Android Tablet (ICS 4.0.3). Windows has something similar in the Data Protection API (DP-API) where the windows kernel helps you encrypt a secret (for example a key or password) either for LocalMachine (ie any process on the machine can decrypt it), or for CurrentUser. This provides a way for apps to manage credentials that are usable only by itself while providing the same security benefits that the Ke圜hain API provides for system-wide credentials. Use the Android Keystore provider to let an individual app store its own credentials that only the app itself can access. As and said in comments, there is no general solution to this, but there may be something available on your platform.įor example, on an Android device you can get help with this from the OS via the Android Keystore: ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |