One FaceID for multiple operations in a short while

Privacy & Security General
akolio OP
Created May ’24
Replies 1
Boosts 0
Views 328
Participants 2

Hi,

Is this possible? I would like to:

  1. Store a biometrically secured key in the Secure Enclave.
  2. Do multiple cryptographic operations using that key in a short period of time (say 5 seconds), not all at once.
  3. Only do one FaceID for that set.

For the time I've only gotten either multiple flashing FaceId requests or the operations failing.

Is it possible to set a time limit in which the first FaceID authentication is accepted?

Should I do something else?

Thanks!

Replies  1
Boosts  0
Views  328
Participants  2
DTS Engineer OP
Apple
May ’24

Is this possible?

Yes.

The trick is to attach the same LACContext to your biometric authentication and your keychain items. For the latter, use kSecUseAuthenticationContext. Its docs describe two different ways to approach this.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

1
One FaceID for multiple operations in a short while
First post date Last post date
 
 
Q