Android - Where and how is fingerprint information stored securely on the device

Question

Android - Where and how is fingerprint information stored securely on the device

I read a little about fingerprint sensors and their growing presence in smartphones. I understand that at the basic level there is a digital image that is registered and serves as a template for authentication. I understand that fingerprint processing takes place in a runtime environment. However, I would like to know where the "template" is stored and in what format?

+6

android fingerprint android-fingerprint-api

Hells guardian Jan 13 '17 at 10:19

source share

1 answer

W4R10CK · Accepted Answer · 2017-01-13T10:23:46+0000

Trusted Runtime Environment (TEE)

Google has taken a wonderful step in the right direction, moving all print manipulation to a runtime environment (TEE) and providing strong guidelines for storing fingerprint data that manufacturers must follow.

All fingerprint data processing is done in TEE
All fingerprint data must be protected in the hardware or trusted memory of the sensor so that fingerprint images are not available.
The fingerprint data can be stored in the file system only in encrypted form,
regardless of whether the file system itself is encrypted or not.
Deleting a user should delete existing user fingerprint data
Root access should not compromise fingerprint data

Data source infinum.co

Android - Where and how is fingerprint information stored securely on the device

More articles: