How check programmaticallly TEE support on Android?
In a project we need check if TEE (Trusted Execution Environment) is supported in order to make a decision.
Regards.
Asked
Active
Viewed 2,063 times
4
-
What decision are you making? – Dori Apr 19 '17 at 13:43
-
In a high security context without TEE we wan't offer a weak authentication way. – Zeus Monolitics Apr 20 '17 at 14:37
-
1Bit more detail about how you are authenticating would be useful. If you are utilising the KeyStore [Key Attestion](https://developer.android.com/training/articles/security-key-attestation.html) gives you the info you require. See `teeEnforced` – Dori Apr 21 '17 at 08:34
-
Not only I want to know if there is a TEE support with the idea to redirect or not te user to diferets login mechanism. – Zeus Monolitics Sep 22 '17 at 12:17
1 Answers
1
Android 7.0 introduced this feature: Key Attestation, which
gives you more confidence that the keys you use in your app are stored in a device's hardware-backed keystore.
but not perfect since
only a small number of devices running Android 7.0 (API level 24) support hardware-level key attestation; all other devices running Android 7.0 use software-level key attestation instead.
As far as I know this feature will be mandatory for devices shipped , not updated with Android 8.0
narancs
- 5,234
- 4
- 41
- 60