Apple has finally explained most of its security details behind its Touch ID technology. Could this be a knee jerk reaction to people's wow reaction to Samsung Galaxy S5's fingerprint scanner?
Apple has released a new white paper about iOS security, and they explain how it works and it looks like it is far more secure than people may have thought.
The Secure Enclave is responsible for processing fingerprint data from the Touch ID sensor, determining if there is a match against registered fingerprints, and then enabling access or purchase on behalf of the user. Communication between the A7 and the Touch ID sensor takes place over a serial peripheral interface bus. The A7 forwards the data to the Secure Enclave but cannot read it. It's encrypted and authenticated with a session key that is negotiated using the device's shared key that is built into the Touch ID sensor and the Secure Enclave. The session key exchange uses AES key wrap- ping with both sides providing a random key that establishes the session key and uses AES-CCM transport encryption.
The 88-by-88-pixel, 500-ppi raster scan is temporarily stored in encrypted memory within the Secure Enclave while being vectorized for analysis, and then it's discarded after. The analysis utilizes subdermal ridge flow angle mapping, which is a lossy process that discards minutia data that would be required to reconstruct the user's actual finger- print. The resulting map of nodes never leaves iPhone 5s, is stored without any identity information in an encrypted format that can only be read by the Secure Enclave, and is never sent to Apple or backed up to iCloud or iTunes.
On devices with an A7 processor, the Secure Enclave holds the cryptographic class keys for Data Protection. When a device locks, the keys for Data Protection class Complete are discarded, and files and keychain items in that class are inaccessible until the user unlocks the device by entering their passcode. On iPhone 5s with Touch ID turned on, the keys are not discarded when the device locks; instead, they're wrapped with a key that is given to the Touch ID subsystem. When a user attempts to unlock the device, if Touch ID recognizes the user's finger- print, it provides the key for unwrapping the Data Protection keys and the device is unlocked. This process provides additional protection by requiring the Data Protection and Touch ID subsystems to cooperate in order to unlock the device. The decrypted class keys are only held in memory, so they're lost if the device is rebooted. Additionally, as previously described, the Secure Enclave will discard the keys after 48 hours or 5 failed Touch ID recognition attempts.
It is about time they explained stuff. Weird that it took them this long. [Apple via Engadget]
Amazon is recognized as the largest online retailer. The Fulfillment by Amazon (FBA) business model is also increasing in demand and there are good reasons behind it. Its foundations are the same as ecommerce business but rather than the orders being fulfilled one by one, Amazon stores the products for you and takes over the process of picking, packing and even shipping them to the customers on your behalf. Read more
PHP as initials represents the word server-side scripting language. This language is used to create dynamic web pages on the internet. PHP works in conjunction with a database server known as MySQL. Together, they provide efficient results, as the MySQL server is usually responsible for various helpful activities. For instance, it stores important data and variables that PHP files may need to perform effectively. Most of the time, PHP uses versions of Apache for beginners. Other software packages such as Microsoft IIS are usually for the professionals. In this article, we look closely at how to use PHP Read more
PC gaming is becoming big day by day. With the emergence of new games, people prefer it to other gaming consoles. Pc gaming is on another whole level of its own. It is competitive, awesome and has very cool graphics. Read more