SecureEnclaveSecureArea

An implementation of SecureArea using the Apple Secure Enclave.

This implementation uses CryptoKit and only supports EcCurve.P256. Keys can optionally be protected by user authentication which can be specified using SecureEnclaveUserAuthType and SecureEnclaveCreateKeySettings.

Note that this platform automatically displays authentication dialogs when a key is used (if needed) unlike other SecureArea dialogs where the application is expected to show authentication dialogs via catching KeyUnlockData, preparing a KeyUnlockData, obtaining authentication, and then retrying the operation.

The behavior (for example, which message to show the user) of the platform native authentication dialog can be customized by passing a SecureEnclaveKeyUnlockData with a suitable LAContext object when the key is used. Note that the platform native authentication dialog will show even if this is not done.

As the Secure Enclave does not current support key attestation, the base KeyAttestation object is used.