Hi,
is it somehow possible to access a key that was generated by the DCAppAttestService generateKey() function?
I need to be 100% sure that no actor from within or outside of my app can access the generated key with the DeviceCheck Framework. It would also be helpful to get some official resources to the topic.
Thank you in advance, Mike
The key itself is stored in the Secure Enclave and cannot be accessed via normal ways.
The Apple Platform Security guide explains the Secure Enclave and it's protection measures in detail.
But in the end it would be up to you to decide whether this is secure enough for your specific requirements. We can't make any claims of suitability for your purpose other than what is documented.
