Intro WWDC ’18 Session: Automatic Strong Passwords and Security Code AutoFill

Transcript

1. Intro WWDC ’18 Session: Automatic Strong Passwords and Security Code

   AutoFill Kishikawa Katsumi

2. Automatic Strong Passwords

3. None

4. Security Code AutoFill

5. None

6. Review: Password Autofill (iOS 11)

7. Associated Domains

8. None
9. None

10. if #available(iOS 11.0, *) { emailField.textContentType = .username passwordField.textContentType =

    .password }
11. None
12. None
13. None
14. None

15. Try: Automatic Strong Passwords

16. None
17. None
18. None
19. None
20. None
21. None
22. None

23. https://developer.apple.com/password-rules/

24. None
25. None

26. ݱ࣌఺Ͱ͜ͷ߲໨͸ɺ· ͩଘࡏ͠ͳ͍Α͏Ͱ͢ɻ

27. passwordField.passwordRules = UITextInputPasswordRules(descriptor: “allowed: digit; minlength: 1; maxlength: 4;")

28. None

29. ύεϫʔυΛอଘ͢Δʹ͸ Password Saving Compatibility checklist Tag fields with content types

    Remove login fields from view hierarchy Clear login fields only after removing from hierarchy Check that AutoFill saved to the correct domain May no longer need SecAddSharedWebCredential()

30. ύεϫʔυΛอଘ͢Δʹ͸ • ࣗಈͰอଘ͞ΕΔͱݴͬͯΔͬΆ͍Μ͚ͩͲɺ؍࡯ͨ͠ ݶΓͰ͸ɺը໘ΛҠಈͯ͠΋ɺϏϡʔ͔ΒςΩετϑΟʔ ϧυΛ࡟আͯ͠΋อଘ͞ΕΔ༷ࢠ͸ͳ͔ͬͨɻΑ͘Θ͔Β ͳ͍ɻ

31. Try: Security Code AutoFill

32. None
33. None
34. None
35. None

36. NOTE: ؔ܎ͳ͍SMSʹ΋൓Ԡ͠·͢ɻ

37. None
38. None
39. None

40. Failure cases

41. Failure cases InstagramͷSMS͸ ӳޠͷ΋ͷͩͱਖ਼͘͠ิ׬͞ΕΔ͕ɺ ೔ຊޠͷ΋ͷ͸ิ׬͞Εͳ͔ͬͨɻ ηογϣϯͰ΋ݴٴ͞Ε͍ͯΔ͕ɺ ͏·͘ಈ͔ͳ͍ύλʔϯ͕͋ͬͨΒ όάϨϙʔτ͠·͠ΐ͏ɻ ॻ͍ͨ௨Γɺ೚ҙͷSMSͰಈ࡞͢ΔͷͰ ύλʔϯͷݕূ͸ҙ֎ͱ؆୯Ͱ͢ɻ

    ͨͩ͠ɺσόΠεͷݴޠઃఆͳͲͰ ݁Ռ͕มΘͬͯΔΑ͏ʹ΋ݟ͑ΔͷͰɺ ͦͷลΓ͸ཁௐࠪɻ

42. Summary • Web (Safari) Ͱ࢖ΘΕ͍ͯͨύεϫʔυͷࣗಈੜ੒ʢ& อଘʣ΍iCloud KeychainʹΑΔ ࣗಈิ׬ΛΞϓϦͰ΋࢖͑ΔΑ͏ʹ͢Δ࢓૊ΈʢiOS 11Ͱ΋෦෼తʹ࣮ݱͰ͖͍ͯͨʣ •

    Ϣʔβʔ͕σεΫτοϓͰSafariΛ࢖͍ͬͯͳͯ͘΋ɺiPhoneͰMobile SafariΛ࢖ͬͯ ͍ΔՄೳੑ͸ߴ͍ͷͰɺiPhoneͷWebͰ̍౓Ͱ΋ϩάΠϯ͍ͯ͠Ε͹ิ׬͸༗ޮʹͳΔ Մೳੑ͕ߴ͍ • ରԠͷίετ͸খ͍͞ͷͰɺରԠ͓ͯ͘͠ͱ཭୤Λ๷͛Δ͸ͣ • ࣮ࡍͷڍಈ͸Α͘؍࡯ɾςετ͢Δඞཁ͋Γɻ͓͔͠ͳڍಈΛݟ͚ͭͨΒใࠂΛɻ • 2 Factor Authͷิ׬͸ศར͕ͩɺSMSʹΑΔίʔυૹ৴͸໰୊΋ࢦఠ͞Ε͍ͯΔͷͰɺ ϓϩδΣΫτʹΑͬͯݕ౼ͷ༨஍͕େ͍ʹ͋Δɻ • ΧελϜͨ͠ύεϫʔυϧʔϧͷςετͷखஈ͕ͳͦ͞͏ʁ

43. Resources • [204] Automatic Strong Passwords and Security Code AutoFill

    • [721] Implementing AutoFill Credential Provider Extensions • Password Rules Validation Tool https://developer.apple.com/password-rules/