Created
July 12, 2017 09:06
-
-
Save kyle-ssg/4c76cb2b2766d8527ecb8a5ace63c4ad to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ```secured-async-storage``` | |
| # Set salt | |
| **When** | |
| 1: when the user logs in | |
| 2: When the user changes their secret word | |
| **Process** | |
| This is the process whereby combination of the secret word and salt along with a generated challenge is stored for later use. | |
| # Generate secret challenge | |
| **When** | |
| 1: When the salt is generated | |
| 2: When the user successfully decrypts local storage using a challenge | |
| **Process** | |
| The system gets the local storaged salt and selects 3 random characters as the challenge, this is inserted into local storage. At this point the previous secured local storage is wiped also, if there is local storage data in memory at this point it is re-encrypted using | |
| the newly generated challenge and written to local storage. | |
| # Get secured storage | |
| **When** | |
| This occurs when the user brings the app to the foreground and has is logged in. | |
| **Process** | |
| At this point the secured storage either provides the version in memory, if this doesn't exist or a configurable timeframe (20 minutes default) has passed creates a new challenge which is saved to local storage and returns it with a salt. | |
| # Set secured storage | |
| **When** | |
| When the app receives sensitive data from the API. The in memory storage is updated and the local storage is re-encrypyted with the current generated challenge. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment