Gitiles
Code Review Sign In
review.blissroms.org / platform_frameworks_base / 3d9d17788fb713787bda740a335304d1b346e19b
commit3d9d17788fb713787bda740a335304d1b346e19b[log] [tgz]
authorShaquille Johnson <ssjohnson@google.com>Thu Dec 07 15:19:45 2023 +0000
committerShaquille Johnson <ssjohnson@google.com>Thu Jan 25 16:04:28 2024 +0000
tree075e0ecae7b390a83e78d32ee919e3cf380fc901
parent86657d6b283fffa6db0699bbee74a034d8678913 [diff]
Deprecate uses of Android Protected Confirmation

Android Protected Confirmation is deprecated due to the high
support/maintenance cost for Android device makers and low adoption rate
among app developers. APC requires Android device makers to have a
substantial amount of device-specific UI code running in the trusted
execution environment. That has proven to be expensive to maintain and
non-scalable, as there cannot be a single implementations device makers
can share or use as a reference. Additionally, app developers have not
adopted this feature, as the Android platform offers other mechanisms
for authentication a user's intent. These mechanisms, such as
authentication-bound Keystore keys, are less secure than Trusted UI, but
are more wide-spread. While we explore alternatives to APC that are
viable to the device makers ecosystem, we sunset the APC API.

Test: atest CtsKeystoreTestCases
Bug: 313856313
Change-Id: I529150af4ce70371ba8c279dc91550a12640f109
1 file changed
tree: 075e0ecae7b390a83e78d32ee919e3cf380fc901
  1. .prebuilt_info/
  2. apct-tests/
  3. apex/
  4. api/
  5. boot/
  6. cmds/
  7. config/
  8. core/
  9. data/
  10. docs/
  11. drm/
  12. errorprone/
  13. graphics/
  14. identity/
  15. keystore/
  16. libs/
  17. location/
  18. media/
  19. mime/
  20. mms/
  21. native/
  22. nfc/
  23. nfc-extras/
  24. obex/
  25. omapi/
  26. opengl/
  27. packages/
  28. proto/
  29. ravenwood/
  30. rs/
  31. samples/
  32. sax/
  33. services/
  34. startop/
  35. telecomm/
  36. telephony/
  37. test-base/
  38. test-legacy/
  39. test-mock/
  40. test-runner/
  41. tests/
  42. tools/
  43. wifi/
  44. .clang-format
  45. .gitignore
  46. .mailmap
  47. AconfigFlags.bp
  48. ADPF_OWNERS
  49. Android.bp
  50. Android.mk
  51. BAL_OWNERS
  52. BATTERY_STATS_OWNERS
  53. BROADCASTS_OWNERS
  54. CleanSpec.mk
  55. framework-jarjar-rules.txt
  56. GAME_MANAGER_OWNERS
  57. INPUT_OWNERS
  58. INTENT_OWNERS
  59. lint-baseline.xml
  60. METADATA
  61. MODULE_LICENSE_APACHE2
  62. MULTIUSER_OWNERS
  63. NOTICE
  64. OWNERS
  65. OWNERS.md
  66. PACKAGE_MANAGER_OWNERS
  67. pathmap.mk
  68. PERFORMANCE_OWNERS
  69. PREUPLOAD.cfg
  70. ProtoLibraries.bp
  71. SECURITY_STATE_OWNERS
  72. SQLITE_OWNERS
  73. TEST_MAPPING
  74. TestProtoLibraries.bp
  75. THERMAL_OWNERS
  76. TRACE_OWNERS
  77. WEAR_OWNERS
  78. ZYGOTE_OWNERS