4. What is wrong with other solutions?
Thursday, May 16, 13
5. What is it that is being offered here?
Thursday, May 16, 13
6. FOOD SAFETY PLATFORM
• Food safety web site (for reference hospital)
• Manufacturers web site
• Web only widget to embed in manufacturer’s and food
regulatory or safety web sites
• Consumers web site
• Mobile app for iOS and Android
Thursday, May 16, 13
7. APP - KEY FEATURES
• Simple to read
• Downloadable database
• Customized user profile
• Allergen information provided by a leading hospital
• Apple Push to update
• Secure
Thursday, May 16, 13
9. USINGTHE APP
• Use anonymously - no registration is required
• Register and define intolerances / allergies
• Download database
• Select by
• Brand
• Barcode scanning
• Text search
Thursday, May 16, 13
10. INTERNAL FEATURES
• English and Spanish supported
• Voice support (deactivated)
• Image cache
• System-wide logging and usage tracking
• not using any 3rd party lib.
• Encryption
Thursday, May 16, 13
14. CORE DATA ENCRYPTION
• Add 2 classes (from Pro Core Data book):
• EncryptedStringTransformer
• NSData+Encryption
Thursday, May 16, 13
15. CORE DATA ENCRYPTION
• Add 2 classes (from Pro Core Data book):
• EncryptedStringTransformer
• NSData+Encryption
• Change properties to ‘transformable’
Thursday, May 16, 13
16. CORE DATA ENCRYPTION
• Add 2 classes (from Pro Core Data book):
• EncryptedStringTransformer
• NSData+Encryption
• Change properties to ‘transformable’
• Set the name to “EncryptedStringTransformer”
Thursday, May 16, 13
17. CORE DATA ENCRYPTION
• Add 2 classes (from Pro Core Data book):
• EncryptedStringTransformer
• NSData+Encryption
• Change properties to ‘transformable’
• Set the name to “EncryptedStringTransformer”
• Set the key in the EncryptedStringTransformer.m class
Thursday, May 16, 13
23. THE KEY?
• Add it into the code? Not a good idea
Thursday, May 16, 13
24. THE KEY?
• Add it into the code?
• Can you store it in the Key Chain?
Not a good idea
Thursday, May 16, 13
25. THE KEY?
• Add it into the code?
• Can you store it in the Key Chain?
Not a good idea
Not secure
Thursday, May 16, 13
26. THE KEY?
• Add it into the code?
• Can you store it in the Key Chain?
• Don’t store it.
Not a good idea
Not secure
Generate it!
Thursday, May 16, 13
32. SECURITY INTHE APP
• Core Data SQLite entries are encrypted
• Key is generated and never stored
• Seed for key stored in KeyChain
Thursday, May 16, 13
39. REFERENCES
Pro Core Data 2nd Edition (Michael Privat,
Robert Warner)
Hacking and securing iOS Applications, Jonathan
Zdziarski
The Laws of Simplicity, John Maeda
Thursday, May 16, 13