Menu
I have come across a few articles on inter-app communication on iOS, e.g. "2-way app integration on the iPhone: How it works", and "Apple Approved iPhone Inter-process Communication". Essentially they use custom URL schemes to communicate. My question is what are the security concerns if I were to pass some sensitive data, such as login credentials?
214
Beyond the sandbox: using app groups to communicate between iOS or macOS apps. Apple's “app group” technology allows a collection of sandboxed macOS or iOS apps from the same development team to all communicate with each other, coordinate functionality, share resources, and/or minimize redundancies.
And users can access these apps on their Apple devices without undue fear of viruses, malware, or unauthorized attacks. On iPhone, iPad, and iPod touch, all apps are obtained from the App Store—and all apps are sandboxed—to provide the tightest controls.
From iPhone Development Wiki. Inter Process Communication (IPC) is a method that allows processes to send each other messages and data. It is a form of communication available on multiple multitasking platforms and implemented on various languages.
At the simplest level, there are two different ways for apps to interact on Android: via intents, passing data from one application to another; and through services, where one application provides functionality for others to use.
Don't use URL schemes for any sensitive data. They are in no way designed to be secure.
Instead you should use the Keychain mechanisms in iOS which are designed for exactly this purpose.
72
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
