Psono app in Apple's App Store
We are proud to announce that Psono's app for iOS is now publicly available in the App Store. The app has been written in Flutter and is released under Apache 2.0 open source. The source code for the app can be found on gitlab.
The app is far from being feature complete yet already supports all necessary functionality to use it without issues. So far the app supports the following features:
- Access to all your datastores and shares
- Creation of entries and folders
- Updating of entries and folders
- Deletion of entries and folders
- Convenient search through your whole datastore
- Lockscreen with biometric authentication e.g. fingerprint
- Mutliple translations into various languages (English, Italian, Spanish, French, ... and many more)
- Autofill
Next to all user specifc features:
- Registration
- Deletion of an account
- Password reset
- Support for 2-factor authentication for Duo / Google Authenticator and Yubikeys
- NFC support fo YubiKey
- SAML Login (requires the EE server)
- OIDC Login (requires the EE server)
- LDAP Login (requires the EE server)
Security
Psono is using state of the art capabilities of iOS.
Random Number Generator
Psono is using flutter's secure random number generator to generate all the cryptographic parameters.
Cryptography
The standard cryptography necessary for Psono's interaction with a Psono Server is done by fluttersodium. fluttersodium is one of the few libraries currenty implementing the necessary NaCl bindings. Another library that is used for sha512 hashes and scrypt password key derivation function is pointycastle. This library is currently unmaintained but that should not harm security.
Storage
Psono is using fluttersecurestorage library which stores everything in the device's key chain. All stored parameters are flagged to never leave your device.
Biometric
Biometric authentication is done by the local_auth library. It is using the normal biometric API of iOS underneath, supporting face id and fingerprint.
