我们如何以加密格式将用户名和密码组合存储在钥匙串中 [英] How can we store a username-password combination in keychain in encrypted format
问题描述
我需要在我的应用程序中实现离线登录.目前,我正在将密码存储在钥匙串中,这些密码在应用程序在线时至少已用于登录一次,但现在我不检查用户名密码组合.如果我在一个设备上有多个用户,那么仅存储密码是不够的.因此,你们每个人都可以提出可以在不违反安全性的前提下完成的事情吗?
I need to implement offline login in my application.Currently I am storing passwords in keychain which have been used to login at least once when the app is online.But right now I am not checking the username password combination. If I have multiple users for a single device , storing only passwords won't be enough. So Can anyone of you suggest something which can be done with no security breaches.
推荐答案
我建议您使用登录名作为密钥来存储密码.像是acccount_test@test.com / password
.
I suggest you to store the password, using the login as a key. something like : acccount_test@test.com / password
.
您也可以对密码的md5
值进行编码,以提高安全性
You can encode the md5
value of the passcode to improve security too
这篇关于我们如何以加密格式将用户名和密码组合存储在钥匙串中的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!