attested_secure_keys_ios 0.1.0
attested_secure_keys_ios: ^0.1.0 copied to clipboard
iOS implementation of attested_secure_keys: hardware-backed, attestable EC P-256 keys via the Secure Enclave and App Attest.
Changelog #
0.1.0 #
First stable release. Secure Enclave + App Attest device-verified on a physical
iPhone. No functional changes since 0.1.0-dev.2.
0.1.0-dev.2 #
- Renamed the iOS keychain service identifiers from
ro.roeid.*toio.github.exilonx.*. No API change. Note: keys stored by0.1.0-dev.1used the old identifiers and won't be found after upgrading — acceptable for a prerelease with no production installs; regenerate keys.
0.1.0-dev.1 #
First prerelease; Secure Enclave + App Attest device-verified on a physical
iPhone. Secure Enclave implementation of AttestedSecureKeysApi:
EC P-256 keygen + ES256 signing via CryptoKit, keychain blob persistence,
capability reporting, biometric gating via SecAccessControl, and an App Attest
scaffold that binds the key's JWK thumbprint + server nonce.