Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id 0ECE8200C60 for ; Mon, 24 Apr 2017 09:59:47 +0200 (CEST) Received: by cust-asf.ponee.io (Postfix) id 0D4DA160BA5; Mon, 24 Apr 2017 07:59:47 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 2DEFA160B99 for ; Mon, 24 Apr 2017 09:59:46 +0200 (CEST) Received: (qmail 2540 invoked by uid 500); 24 Apr 2017 07:59:45 -0000 Mailing-List: contact dev-help@fineract.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@fineract.apache.org Delivered-To: mailing list dev@fineract.apache.org Received: (qmail 2528 invoked by uid 99); 24 Apr 2017 07:59:45 -0000 Received: from pnap-us-west-generic-nat.apache.org (HELO spamd1-us-west.apache.org) (209.188.14.142) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 24 Apr 2017 07:59:45 +0000 Received: from localhost (localhost [127.0.0.1]) by spamd1-us-west.apache.org (ASF Mail Server at spamd1-us-west.apache.org) with ESMTP id C99F9C11DF for ; Mon, 24 Apr 2017 07:59:44 +0000 (UTC) X-Virus-Scanned: Debian amavisd-new at spamd1-us-west.apache.org X-Spam-Flag: NO X-Spam-Score: -3.722 X-Spam-Level: X-Spam-Status: No, score=-3.722 tagged_above=-999 required=6.31 tests=[KAM_ASCII_DIVIDERS=0.8, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SORBS_SPAM=0.5, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=disabled Received: from mx1-lw-eu.apache.org ([10.40.0.8]) by localhost (spamd1-us-west.apache.org [10.40.0.7]) (amavisd-new, port 10024) with ESMTP id VenYGcXF07jU for ; Mon, 24 Apr 2017 07:59:42 +0000 (UTC) Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by mx1-lw-eu.apache.org (ASF Mail Server at mx1-lw-eu.apache.org) with SMTP id B852760D69 for ; Mon, 24 Apr 2017 07:59:41 +0000 (UTC) Received: (qmail 2319 invoked by uid 99); 24 Apr 2017 07:59:40 -0000 Received: from mail-relay.apache.org (HELO mail-relay.apache.org) (140.211.11.15) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 24 Apr 2017 07:59:40 +0000 Received: from mail-io0-f178.google.com (mail-io0-f178.google.com [209.85.223.178]) by mail-relay.apache.org (ASF Mail Server at mail-relay.apache.org) with ESMTPSA id 4EB951A01D7 for ; Mon, 24 Apr 2017 07:59:40 +0000 (UTC) Received: by mail-io0-f178.google.com with SMTP id p80so64386567iop.3 for ; Mon, 24 Apr 2017 00:59:40 -0700 (PDT) X-Gm-Message-State: AN3rC/4VJnpW4kaBLBcwGBwkjT7mw31KSv898YUCxf8uWrSE/ZxpPCHZ l64dd6IZyAsjYsyleIySyqqV6v+Hdw== X-Received: by 10.107.136.78 with SMTP id k75mr5053559iod.20.1493020779041; Mon, 24 Apr 2017 00:59:39 -0700 (PDT) MIME-Version: 1.0 Received: by 10.36.78.5 with HTTP; Mon, 24 Apr 2017 00:59:38 -0700 (PDT) In-Reply-To: References: From: Myrle Krantz Date: Mon, 24 Apr 2017 09:59:38 +0200 X-Gmail-Original-Message-ID: Message-ID: Subject: Re: [Mifos-developer] REQUEST: Store 4-digit pin code on back-end for self-service login To: dev@fineract.apache.org Cc: "dev (dev@fineract.incubator.apache.org)" Content-Type: text/plain; charset=UTF-8 archived-at: Mon, 24 Apr 2017 07:59:47 -0000 Just a thought: Security doesn't seem like a very good argument here. If it's input on the device in hand then it will at some point be stored locally, even if it's only temporary. By saving the pin on the server you are creating a lot more places where it would be stored at least temporarily and therefore a lot more "attach surface". Of course you can talk about hashing/salting/encrypting to reduce that attach surface, but those are all things you can do locally too. Local is the only place you absolutely cannot avoid having it in plain text at some point (however brief) because it is being input there. Greets, Myrle On Mon, Apr 24, 2017 at 8:54 AM, Ed Cable wrote: > Shiv, > > I agree that I wouldn't want log-in to be dependent on network > connectivity. I too also don't believe that the pin needs to be shareable > across devices as it's most typical that the 4 digit pin only works for the > device that you're setting it up on. > > The reason why we were proposing storing the 4-digit pin on the server was > because it was insecure if stored locally if a device was rooted and the > pin could be accessed. > > Ishan - there is no way the 4-digit pin could be stored locally in a secure > manner? > > Sander and others, based on what you've built into your self-service apps, > can you add your thoughts to this thread? > > Thaks, > > Ed > > On Sun, Apr 16, 2017 at 10:02 PM, SHIV ARORA > wrote: > >> If we store the pin on server then the app will be dependent on network >> connectivity.I think this passcode feature should work, irrelevant of the >> access of internet or not.On further stages, we would give the app offline >> access feature.So i think network dependency for this feature is not a good >> option. >> >> On 14 Apr 2017 9:21 p.m., "Ed Cable" wrote: >> >>> Hi Nazeer, >>> >>> Per our discussions, I wanted to send some further details on the dev >>> list about the requirements and conversations the mobile developers working >>> on the Android self-service app have been having. >>> >>> First off, in order to make it easier for a user to log in and not have >>> to fully authenticate themselves each time they leave the self-service app, >>> we wanted to enable a 4 digit pin code that could be used to log in to the >>> app (once fully authenticated for a first time). This is pretty standard >>> practice in banking apps. >>> >>> We didn't want to store that locally since it wouldn't be secure on >>> phones that are rooted. >>> >>> With that constraint, we need to be able to store this pin on the >>> back-end - then it can also be shared across phones as well. >>> >>> I'll let Rajan, Ishan, and Puneet and others chime in with more details >>> about access token that gets generated, its validity etc. >>> >>> A couple of GSOC aspirants have already begun work on the creation and >>> entry of the pin via the app on the phone but we need your assistance in >>> storing it at the back-end. >>> >>> I've created a ticket at: https://issues.apache.org/ >>> jira/browse/FINERACT-424 >>> >>> Discussion surrounding those tickets can be found at >>> https://github.com/openMF/self-service-app/issues/115 and >>> https://github.com/openMF/self-service-app/issues/132 >>> >>> Ed >>> >>> -- >>> *Ed Cable* >>> President/CEO, Mifos Initiative >>> edcable@mifos.org | Skype: edcable | Mobile: +1.484.477.8649 >>> <(484)%20477-8649> >>> >>> *Collectively Creating a World of 3 Billion Maries | *http://mifos.org >>> >>> >>> >>> ------------------------------------------------------------ >>> ------------------ >>> Check out the vibrant tech community on one of the world's most >>> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >>> Mifos-developer mailing list >>> mifos-developer@lists.sourceforge.net >>> Unsubscribe or change settings at: >>> https://lists.sourceforge.net/lists/listinfo/mifos-developer >>> >> >> ------------------------------------------------------------ >> ------------------ >> Check out the vibrant tech community on one of the world's most >> engaging tech sites, Slashdot.org! http://sdm.link/slashdot >> Mifos-developer mailing list >> mifos-developer@lists.sourceforge.net >> Unsubscribe or change settings at: >> https://lists.sourceforge.net/lists/listinfo/mifos-developer >> > > > > -- > *Ed Cable* > President/CEO, Mifos Initiative > edcable@mifos.org | Skype: edcable | Mobile: +1.484.477.8649 > > *Collectively Creating a World of 3 Billion Maries | *http://mifos.org >