CodeAnt AI home pagelight logodark logo
  • Dashboard
  • Dashboard
  • Documentation
  • Demo Call with CEO
  • Blog
  • Slack
    • Get Started
    • CodeAnt AI
    • Setup
    • Control Center
    • Pull Request Review
    • IDE
    • Compliance
    • Anti-Patterns
    • Code Governance
    • Infrastructure Security Database
    • Application Security Database
      • Apex
      • Bash
      • C
      • Clojure
      • Cpp
      • Csharp
      • Dockerfile
      • Elixir
      • Fingerprints
      • Generic
      • Go
      • Html
      • Java
      • Javascript
      • Json
      • Kotlin
      • Ocaml
      • Php
      • Problem-based-packs
      • Python
      • Ruby
      • Rust
      • Scala
      • Solidity
      • Swift
        • Biometrics-and-auth
          • Acl-changes
          • Keychain-always-accessible
            • Keychain accessible always
          • Keychain-sync
          • Local-biometrics
          • Missing-user-auth
          • No-verify
          • Pass-fallback
        • Commoncrypto
        • Cryptoswift
        • Insecure-communication
        • Lang
        • Pathtraversal
        • Sql
        • Sqllite
        • Webview
        • Webview
      • Terraform
      • Typescript
      • Yaml
    Keychain-always-accessible

    Keychain accessible always

    keychain-accessible-always

    The application was observed to store keychain items with the accessibility type kSecAttrAccessibleAlways meaning that the data is not sufficiently protected at rest. Ideally, the application should use kSecAttrAccessibleWhenUnlocked to configure the data to be accessible only when the user has unlocked the screen.
    Likelihood: LOW
    Confidence: HIGH
    CWE:
    - C
    - W
    - E
    - -
    - 2
    - 7
    - 2
    - :
    -

    - L
    - e
    - a
    - s
    - t
    -

    - P
    - r
    - i
    - v
    - i
    - l
    - e
    - g
    - e
    -

    - V
    - i
    - o
    - l
    - a
    - t
    - i
    - o
    - n
    Keychain acl allows biometry changesKeychain device sync
    twitterlinkedin
    Powered by Mintlify
    Assistant
    Responses are generated using AI and may contain mistakes.