tags:

views:

126

answers:

4
+4  Q: 

Data protection on mobile devices.

Hi,

I'm storing some healthcare data on a mobile phone and I'd like to know what the best system of encryption is, to keep the data secure. It's basically a bunch of model objects, that I'm serializing and storing using NSKeyedArchiver / the equivalent on Blackberry (the name eludes me for now)

Any tips? I don't want to make up security protocols as I go along, but one of the other threads suggested the following approach.

  • Generate a public / private key pair
  • Store the public key
  • Encrypt the private key with a hash of the user's password.
  • Use the public key to encrypt the byte stream.
  • Decrypt the pvt key, keep it in memory, whenever the user logs in, and decrypt the stored data as needed.

Is there a more standard way of doing this?

Thanks,
Teja.

Edit: I appreciate it that you're trying to help me, but the things currently being discussed are business level discussions, on which I have no control of. So rephrasing my question, if you ignore that it's healthcare data, but some confidential data, say a password, how would you go about doing it?

+2  A: 

http://en.wikipedia.org/wiki/HIPPA

Make sure you read and understand this!

edit: Sorry, didn't even bother to check to see where the OP is from, but even if they aren't from the USA there are still some good practices to follow in HIPPA.

Crag  2010-08-25 23:47:02
Welcome Crag to SO forum +1 from me... you've spoken my exact thoughts and concerns I have left in the comments above the OP's question!
tommieb75  2010-08-25 23:50:19
Does HIPPA ban you from saving data on a device though? (Obviously with proper encryption and everything). I'm slightly concerned about the physical safeguards piece, the part about "restricting access to authorized personnel only"Like someone else said, healthcare reports and data do get saved on laptops. What do you do in the scenario that the laptop is lost? On top of this, Apple/RIM give you the option to remote wipe a device.The whole deal with storing the data on the device might not be that absurd.
Tejaswi Yerukalapudi  2010-08-26 00:22:36
HIPPA aside (note what hotpaw2 says about lacking applicability to one device - not criticising your answer Crag), why is the data so sensitive and unable to be protected by sufficiently strong encryption simply because it is medical in nature? Anyone here use 1Password or similar?
Adam Eberbach  2010-08-26 06:46:59
A: 

HIPPA is a business practice and total system level privacy/security regulation. As such, an app can't comply by itself on random hardware for a random user. You need to determine how your app fits into a client health care provider's total regulatory compliance process before you can determine what algorithm might be found to comply with that process.

hotpaw2  2010-08-26 04:40:24
A: 

My best advice would be, don't store sensitive data in the user's mobile phone.

If that is not an option for you, then some kind of public/private key encryption, such as one you described, would be the next best option.

William  2010-09-08 17:09:22
+6  A: 

There might be an easier way for secure data storage. With iOS 4.0 apple introduced system provided encryption of application documents. This means that the OS is responsible for doing all the encryption and decyryption in a fairly transparent way.

Applications that work with sensitive user data can now take advantage of the built-in encryption available on some devices to protect that data. When your application designates a particular file as protected, the system stores that file on-disk in an encrypted format. While the device is locked, the contents of the file are inaccessible to both your application and to any potential intruders. However, when the device is unlocked by the user, a decryption key is created to allow your application to access the file.

So only when your app is active, the files can be read back in unencrypted format. But the nice thing is that they are always encrypted on disk. So even if someone jailbreaks the device, or backs it up, the retrieved files are worthless.

This was probably introduced to conform to some specific data security standard that is required. I can't find that anywhere though.

For more info see the iOS 4.0 release notes.

St3fan  2010-09-08 20:35:00
Thanks, that really helps, but I really need to hold out for that security protocol because I need to implement this across Blackberry, Droid and iPhone 3.0+.
Tejaswi Yerukalapudi  2010-09-11 17:42:18

related questions

How do we get arround Apple's decission to skip sms templates for iPhone?
iPhone App Crashing - Error Question
Can I write native iPhone apps using Python
Does the Iphone 1/2 have a compass inside?
How do you beta test an iphone app?
Is it just the iPhone simulator that is restricted to intel only Mac's?
iPhone App Minus App Store?
Deleting messages from Exchange IMAP mailbox on iPhone
Is there a multiplatform framework for developing iPhone / Android applications?
How can I launch the Google Maps iPhone application from within my own native application?
Tips for a successful AppStore submission?
iPhone app that access the Core Location framework over web
Virtual Mac?
What's a good machine for iPhone development?
How can I develop for iPhone using a Windows development machine?
Recommended iPhone Development Resources
Best Wiki for Mobile Users
How to programmatically send SMS on the iPhone?
iPhone - Exchange Calendars in Public Folders
iPhone web applications, templates, frameworks?
Understanding reference counting with Cocoa / Objective C
How-to articles for iPhone development, Objective-C
What are the correct pixel dimensions for an apple-touch-icon?
How do I give my web sites an icon for iPhone?
iPhone app in landscape mode