Assuming I have some of the data that I want to keep private for an application running in a security context shared by the user, is it possible to somehow save the data from the user?
Let's say that I have, for example, a public key for a remote server that is used by the application and stored on disk (in a file / database, regardless), is it possible to somehow prevent users from changing the public key from the application (Short designation hardcoding in app)?
I do not see the problem solved by encryption, as the user will be able to read the encryption key available for the application. The user will also be able to read the credentials of the database if the data is stored there.
Is there any way to allow the application to store part of the data from other users / applications in the same security context so that only the application can change it?
source
share