Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Android CryptoObject usage in fingerprint

Tags:

android

cryptography

fingerprint

In Android fingerprint sample code FingerprintDialog, the method that starts fingerprint hardware FingerprintManager#authenticate takes a parameter of FingerprintManager.CryptoObject. According to the documentation, it's the object associated with the call or null if none required. The description is still not clear for me. Would someone explain when I should or should not use crypto Thanks.

like image 849
Dino Tw Avatar asked Jan 12 '16 22:01

Dino Tw

People also ask

What is CryptoObject?

CryptoObjects are used to unlock auth-per-use keys via BiometricPrompt#authenticate(CryptoObject, CancellationSignal, Executor, AuthenticationCallback) , whereas time-based keys are unlocked for their specified duration any time the user authenticates with the specified authenticators (e.g. unlocking keyguard).

How can I use my Android phone as a biometric device?

From Settings, tap Biometrics and security, and then tap Fingerprints. Enter your secure screen lock credentials and then tap Add fingerprint. Follow the on-screen prompts to add the fingerprint, and then tap Done.

Does Android share biometric data?

Your fingerprint data isn't shared with Google or any apps on your device. Apps are notified only whether your fingerprint was verified. If you're ready to get started using your fingerprint to unlock your phone, learn how to set up your fingerprints.

1 Answers

The FingerprintDialog sample provided in the Android Samples is a bit dense so let's break down what's happening:

  1. Configure and generate cryptographic Keys. In this step you can specify that the Key can only be used if KeyGenParameterSpec.Builder.setAuthenticated(true).
  2. Initialize a Cipher object with the cipherMode (encrypt/decrypt) and the Key generated from Step 1
  3. Initialize a FingerprintCrypto.CryptoObject() with the Cipher from Step 2
  4. Start the Fingerprint scanner and pass in the CryptoObject from step 3 by calling FingerprintManager.authenticate()
  5. User successfully authenticates with their fingerprint. The Android OS will set the "authenticated" bit in the Key from 0 to 1.
  6. Now that the key has been authenticated for use, it can be used to do any crypto operation by calling Cipher.doFinal().

If you try to modify step 4 by passing in null to FingerprintManager.authenticate(), then step 6 will fail because you have not been authenticated to use the key.

Hope that helps.

like image 181
Android Noob Avatar answered Oct 25 '22 17:10

Android Noob
Sign in to Comment

Related questions

doesn't show getSupportFragmentManager on ViewHolder in RecyclerView
How do I Know My System Available Gradle buildToolsVersion
Rebuild required after changing xml layout files in Android Studio
Admob account suspended due to "invalid activity on the AdSense ads hosted on your website"
Scrollable BarChart with possibility to touch each bar using MpAndroidChart?
No view Manager defined for class RCTMap
How can I make work ViewPager with RecyclerView inside NestedScrollView
Android CPU register names?
How to click the snackbar button in Espresso testing?
Multiple LayoutManager in RecyclerView
Sending and Receiving messages using Smack Api for Android
maximum image selection limit from gallery Android
Netflix vs ReactiveX RxJava-Android library
Send data to Matlab from Android/Java
Android : How to get rid of weird border around progress dialog
Android Pay - Testing from outside US
App permissions on Android Marshmallow in PhoneGap
Proguard and RxAndroid V1.1.0
Generate google-services.json for Android
How to add item into popup copy/paste menu on a android selected textview?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!