Keychain is okay, I just cannot bear the crypto libraries. Sent from my iPhone
> On May 17, 2014, at 1:08 AM, Jens Alfke <j...@mooseyard.com> wrote: > > >> On May 16, 2014, at 12:37 AM, ChanMaxthon <xcvi...@me.com> wrote: >> >> I got fed up by Apple already and found a little BSD-licensed CXX crypto >> library called Botan. I will either wrap it in Objective-C or rewrite it for >> my later projects. > > I’m cautious of ‘alternative’ crypto implementations; there’s a lot of > complex math and logic involved that’s easy to get wrong. I want the > implementation I use to be as battle-tested as possible. > > Also, the Keychain is a valuable place to store secrets that, being built > into the OS, offers better security than anything you can do on your own or > with 3rd party libraries. There’s not really any other good solution for > storing keys, short of making the user type in a strong passphrase every time > they launch the app. Too bad the Keychain APIs are the worst part of the > Security framework :( > > —Jens _______________________________________________ Cocoa-dev mailing list (Cocoa-dev@lists.apple.com) Please do not post admin requests or moderator comments to the list. Contact the moderators at cocoa-dev-admins(at)lists.apple.com Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com