Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Investigate if FHIR library can request users to enter screen lock challenge #944

Closed
stevenckngaa opened this issue Nov 29, 2021 · 2 comments
Closed

Investigate if FHIR library can request users to enter screen lock challenge #944

stevenckngaa opened this issue Nov 29, 2021 · 2 comments
Assignees
@stevenckngaa
Labels
security type:research Research or prototype something new
Projects
FHIR engine library

Comments

@stevenckngaa
Copy link
Collaborator

Describe the issue to be researched
Include any background information and available resources.
This PR introduced sqlcipher to encrypt FHIR resources database. To further secure devices using apps built upon FHIR SDK, we should

  • [P0] at least require the user to setup a lock screen.
  • [P1] on request, the user must enter a screen lock challenge before they can access the encryption key.

Describe the goal of the research
What's the desired outcome of this task? What artifacts should be produced?
Enumerate ways to request users to enter screen lock challenge before using our app / database encryption key.

Describe the methodology
Where can more information be found? Who should the assignee approach to ask questions? How can a decision be made?
TBD

Would you like to work on the issue?
Yes
@stevenckngaa stevenckngaa added the type:research Research or prototype something new label Nov 29, 2021
@stevenckngaa stevenckngaa self-assigned this Nov 29, 2021
@jingtang10
Copy link
Collaborator

please also see #76 - can you merge these two issues?

@jingtang10 jingtang10 added this to To do in FHIR engine library via automation Dec 1, 2021
FHIR engine library automation moved this from To do to Done Dec 1, 2021
@stevenckngaa
Copy link
Collaborator Author

Thanks Jing. Didn't know there is already an existing issue. I have closed this and assigned #76 to myself.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@stevenckngaa stevenckngaa

Labels
security type:research Research or prototype something new
Projects
Android FHIR SDK
Archived in project
FHIR engine library
  
Done
Milestone
No milestone
Development

No branches or pull requests
3 participants
@jingtang10 @stevenckngaa @Tarun-Bhardwaj