diff options
| author | 2023-12-07 15:19:45 +0000 | |
|---|---|---|
| committer | 2024-01-25 16:04:28 +0000 | |
| commit | 3d9d17788fb713787bda740a335304d1b346e19b (patch) | |
| tree | 075e0ecae7b390a83e78d32ee919e3cf380fc901 /libs/androidfw/misc.cpp | |
| parent | 86657d6b283fffa6db0699bbee74a034d8678913 (diff) | |
Deprecate uses of Android Protected Confirmation
Android Protected Confirmation is deprecated due to the high
support/maintenance cost for Android device makers and low adoption rate
among app developers. APC requires Android device makers to have a
substantial amount of device-specific UI code running in the trusted
execution environment. That has proven to be expensive to maintain and
non-scalable, as there cannot be a single implementations device makers
can share or use as a reference. Additionally, app developers have not
adopted this feature, as the Android platform offers other mechanisms
for authentication a user's intent. These mechanisms, such as
authentication-bound Keystore keys, are less secure than Trusted UI, but
are more wide-spread. While we explore alternatives to APC that are
viable to the device makers ecosystem, we sunset the APC API.
Test: atest CtsKeystoreTestCases
Bug: 313856313
Change-Id: I529150af4ce70371ba8c279dc91550a12640f109
Diffstat (limited to 'libs/androidfw/misc.cpp')
0 files changed, 0 insertions, 0 deletions