Storage-protections
Swift data protection
swift-data-protection
swift-data-protection
File storage was observed that does not leverage the platforms strongest available protection mechanisms. Where feasible, data should be stored with completeFileProtection
or completeUnlessOpen
, ensuring that data is sufficiently protected at rest. By default, data is unlocked the first time the user authenticates after boot.
Likelihood: LOW
Confidence: HIGH
CWE:
- CWE-311: Missing Encryption of Sensitive Data
OWASP:
- A03:2017 - Sensitive Data Exposure
- A04:2021 - Insecure Design