A: 

I would think that, if the application contains medical records, you would want to have the user authenticate every time they use the application or, at least, have some way of pushing down a disable message that renders the app useless in the case where it is lost or stolen. The 4-6 character password (pin) would also concern me with respect to HIPAA, if it applies.

You might want to treat it as a standard web app from the server perspective and do session-based authentication and access with a session that times out, perhaps after a long period, and re-authentication on timeout.

tvanfosson  2010-01-10 13:56:09
Agree. This is why I don't want to do something like just rely on HTTP Auth using that 4-6 digit Pin. I'd like to do something based on that pin + something else which would be saved on the iPhone and not really known to user. I. That something else should be established when the iPhone (or application) is registered to communicate with the service. Then if the device is ever lost, I could simply disable the device by removing it from the configuration on the server.
jr  2010-01-10 15:11:11
A: 

You could use SSL with client authentication. If a device gets lost, you can remove the certificate on the server. There are some obstacles though:

  • It is not entirely clear if/how you can do client authenticated SSL on the iPhone Unfortunately, there is not much documentation about it. Have a look at Certificate, Key, and Trust Services Reference
  • You have to create a private key for every device
  • You also have to figure out a secure way to transfer the private key to the device
Daniel Hepper  2010-01-11 00:22:05
I thought of this, but kind of ruled it out due to the complexity of managing the client certificates, etc. I think I am going to do some type of user pin + device identifier as a password. The user will need to supply the 'pin' and the phone or client will supply the 'device identifier'. I may do something like sha-1 the device identifier with a separate pre-shared secret so that it is not just the device identifier, but I think this is no better then just a longer password. The problem is I want a short PIN, but want more security then that provides. Security is always about tradeoffs
jr  2010-01-11 01:08:47

related questions

How do we get arround Apple's decission to skip sms templates for iPhone?
iPhone App Crashing - Error Question
Can I write native iPhone apps using Python
Does the Iphone 1/2 have a compass inside?
How do you beta test an iphone app?
Is it just the iPhone simulator that is restricted to intel only Mac's?
iPhone App Minus App Store?
Deleting messages from Exchange IMAP mailbox on iPhone
Is there a multiplatform framework for developing iPhone / Android applications?
How can I launch the Google Maps iPhone application from within my own native application?
Tips for a successful AppStore submission?
iPhone app that access the Core Location framework over web
Virtual Mac?
What's a good machine for iPhone development?
How can I develop for iPhone using a Windows development machine?
Recommended iPhone Development Resources
Best Wiki for Mobile Users
How to programmatically send SMS on the iPhone?
iPhone - Exchange Calendars in Public Folders
iPhone web applications, templates, frameworks?
Understanding reference counting with Cocoa / Objective C
How-to articles for iPhone development, Objective-C
What are the correct pixel dimensions for an apple-touch-icon?
How do I give my web sites an icon for iPhone?
iPhone app in landscape mode