Apple's documentation for OS X talks about using SecItemImport to obtain a SecKeyRef. The function signature looks like this: OSStatus SecItemImport ( CFDataRef importedData, CFStringRef fileNam...

I am storing passwords into the iOS keychain and later retrieving them to implement a "remember me" (auto-login) feature on my app. I implemented my own wrapper around the Security.framework func...

We have a Launch Daemon which (necessarily, for various reasons) runs as root, and which communicates with a server component via the network. It needs to authenticate with the service, so when it ...

For some reason I can't get this simple keychain code to work. //Let's create an empty mutable dictionary: NSMutableDictionary *keychainItem = [NSMutableDictionary dictionary]; NSString *username...

I am trying to call a function in the Security.framework, from swift code. Forgetting about the "error out" (last) parameter for a second, if I call the function like this: let accessControlRef = ...

Is it possible to change the default public exponent (e) when generating an RSA key pair using SecKeyGeneratePair? I am aware 65537 is a good default, so this is just a question about whether it i...

I need to update the kSecAttrAccessible of a keychain entry. I don't need to update the actual data, just the accessibility attribute. First I try to find the item to make sure that my query dict...

It seems that a keychain file (with extension .keychain) will usually have an invisible file associated with it, located in the same directory. This invisible file always has these properties: I...

I'm specifically looking into using the SecKeyGeneratePair() method in the Security framework and specifying [kSecAttrKeyType: kSecAttrKeyTypeEC] in the params dictionary. But I haven't been able ...

Many userspace CSPRNG's have an issue where after fork(2), it's possible for the two different processes to return the same stream of random bytes. From looking at dtruss, it's clear that SecRando...

I am using digital certificates to sign data files in my App. The code fragment below fails when the call to SecKeyRawVerify returns with -9809. This is running on an iPhone. I can't even identify ...

So the OS X Keychain has three pieces of information: ServiceName (the name of my app) Username Password I obviously always know the ServiceName. Is there a way to find any saved Username(s) fo...

I want to securely communicate with my server and here is what I am doing... NSURLProtectionSpace *protectionSpace = [challenge protectionSpace]; SecTrustRef trust = [protectionSpace serverTrust];...

I am trying to verify the user identity on my application using a certificate / identity that the user has stored by opening a .cer / .p12 attached to an email. The certificate appears on the setti...