What is the usage of the kSecAttrIsPermanent
attribute when using Apples libcommonCrypto.dylib
on iOS?
Apples documentation says:
The corresponding value is of type CFBooleanRef and indicates whether this cryptographic key is to be stored permanently.
What is the reason not to store something permanently in the keychain and how long will it be stored then? (until reboot? until app is closed? until app is uninstalled?)
It's a parameter used within SecKeyGeneratePair
when generating keys.
From the Certificate, Key, and Trust Services Reference
kSecAttrIsPermanent
— If this key is present and has a Boolean value of true, the key or key pair is added to the default keychain.
In this context, if you provide this parameter and it is false, then you'll receive the keys in memory, but it won't be persisted to the keychain (on disk). It'll last for however long you keep a hold of it whilst the application is still running, unless you persist it yourself afterwards.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With