Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Proposal for HWKeyCrypter and Biometric Authentication #18

Open
wants to merge 2 commits into
base: bitcoinj_update
Choose a base branch
from
Open

Proposal for HWKeyCrypter and Biometric Authentication #18

wants to merge 2 commits into from

Conversation

oliveraemmer
Copy link

@oliveraemmer oliveraemmer commented Apr 10, 2024
edited
Loading

Currently the keys in the wallet can be encrypted using a spending pin. With this PR we propose a new encryption type which leverages the Android KeyStore and Biometric Authentication to encrypt the keys. It is not a replacement of the spending pin but an addition.

image

This change requires additional changes in bitcoinj. The files in wallet/libs/ are built from the proposal_keycrypterfactory_new_encryptiontype branch.

With Android Studio 2022.3.1 Patch 2 this current settings should build without additional changes

Change log:

  • Add new HWKeyCrypter
  • Add new CryptActivity which runs while the Biometric Prompt is executed
  • Implement and set KeyCrypterFactory on WalletProtobufSerializer
  • Add radio buttons in EncryptKeyDialogFragment to chose between spending pin and hardware encryption
  • Remove encryption if hardware encryption is used before creating a backup (After decryption, the backup password can still be set, so the backup is still encrypted)

@oliveraemmer oliveraemmer force-pushed the keystore branch 2 times, most recently from 04d8ddc to 3dddfc3 Compare April 10, 2024 08:03
@oliveraemmer oliveraemmer force-pushed the keystore branch 2 times, most recently from 40415d8 to fdd73a5 Compare April 10, 2024 08:34
@oliveraemmer oliveraemmer mentioned this pull request Apr 10, 2024
Open
@oliveraemmer oliveraemmer changed the title Implement HWKeyCrypter and Biometric Authentication Proposal for HWKeyCrypter and Biometric Authentication Apr 10, 2024
@oliveraemmer oliveraemmer force-pushed the keystore branch 2 times, most recently from 444792e to 8e301ff Compare April 10, 2024 09:41
@oliveraemmer oliveraemmer mentioned this pull request Apr 10, 2024
Open
@oliveraemmer oliveraemmer force-pushed the keystore branch 2 times, most recently from 894a9bf to 517740d Compare April 14, 2024 11:52
@oliveraemmer oliveraemmer mentioned this pull request Apr 14, 2024
Open
@oliveraemmer @iSavicx
Implement HWKeyCrypter and Biometric Authentication
684181b 
Co-authored-by: Sebastian Nicol <sebastian.r.nicol@gmail.com>
Co-authored-by: Oliver Aemmer <oliver.aemmer@protonmail.ch>
@iSavicx @oliveraemmer
Change to require API 30 for hardware-backed encryption due to possib…
c0556cd 
…le attack vector.

Co-authored-by: Sebastian Nicol <sebastian.r.nicol@gmail.com>
Co-authored-by: Oliver Aemmer <oliver.aemmer@protonmail.ch>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@oliveraemmer