Global Variable

kSecAttrTokenID

A key whose value indicates that a cryptographic key is in an external store.

Declaration

const CFStringRef kSecAttrTokenID;

Discussion

The corresponding value is of type CFStringRef, and may only be one of the constants specified in Token ID Values. Presence of this key indicates that the item is backed by an external store, as uniquely identified by the value. An item without this attribute is stored as normal in the keychain database.

Use this attribute only in the top-level parameter dictionary during key creation and not in one of the private or public key sub-dictionaries given by kSecPrivateKeyAttrs or kSecPublicKeyAttrs, respectively. See Storing Keys in the Secure Enclave for an example.

See Also

Optional

kSecAttrLabel

A key whose value is a string indicating the item's label.

kSecAttrIsPermanent

A key whose value indicates the item's permanence.

kSecAttrApplicationTag

A key whose value indicates the item's private tag.

kSecAttrEffectiveKeySize

A key whose value indicates the effective number of bits in a cryptographic key.

kSecAttrCanEncrypt

A key whose value is a Boolean that indicates whether the cryptographic key can be used for encryption.

kSecAttrCanDecrypt

A key whose value is a Boolean that indicates whether the cryptographic key can be used for decryption.

kSecAttrCanDerive

A key whose value is a Boolean that indicates whether the cryptographic key can be used for derivation.

kSecAttrCanSign

A key whose value is a Boolean that indicates whether the cryptographic key can be used for digital signing.

kSecAttrCanVerify

A key whose value is a Boolean that indicates whether the cryptographic key can be used for signature verification.

kSecAttrCanWrap

A key whose value is a Boolean that indicates whether the cryptographic key can be used for wrapping.

kSecAttrCanUnwrap

A key whose value is a Boolean that indicates whether the cryptographic key can be used for unwrapping.