可以备份Android的密钥库吗? [英] Can Android's keystore be backed up?
问题描述
Android支持APK文件,应用程序数据等的云和本地备份。设备密钥库是否包含在备份中?
Android supports cloud and local backup of APK files, application data, and so on. Is the device keystore included in the backup?
(我认为您不能从由硬件支持的密钥库,即使是在有根设备中,也不确定在没有硬件支持时使用的基于软件的版本。)
(I don't think you can extract private keys from an hardware-backed keystore even in rooted devices, not so sure about the software-based version used when there is no hardware support.)
推荐答案
否。硬件支持的密钥库背后的全部要点是,它甚至可以抵抗具有根访问权限的特权攻击。
No. The whole point behind the hardware-backed keystore is that it's resistant to even privileged attacks with root access.
因此,即使操作系统也无法访问来自
For this reason, not even the OS can access raw key material from the hardware-backed keystore.
虽然从理论上讲,操作系统可以在具有软件支持的低端设备上进行密钥库备份密钥库,出于安全原因,操作系统完全不这样做或不允许这样做。
While it would be theoretically possible for the OS to do a keystore backup on lower end devices with a software-backed keystore, this is simply not done or allowed by the OS for security reasons.
这篇关于可以备份Android的密钥库吗?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!