Local Authentication (Biometrics)
Local Authentication (Biometrics) can be easily bypassed.
Apple devices have the ability to perform authentication via biometrics, and explains how this works in code in the referenced article. What's important to understand here is that this is basically a way for an iOS application to ask iOS to check whether the user is authenticated to perform the aforementioned action.
During local authentication, an app authenticates the user against credentials stored locally on the device. In other words, the user "unlocks" the app or some inner layer of functionality by providing a valid PIN, password or biometric characteristics such as face or fingerprint, which is verified by referencing local data. Generally, this is done so that users can more conveniently resume an existing session with a remote service or as a means of step-up authentication to protect some critical function.
Objection
1
....highaltitudehacks.DVIAswiftv2 on (iPad: 13.3.1) [usb] # ios ui biometrics_bypass
2
(agent) Registering job 186767. Type: ios-biometrics-disable-evaluatePolicy
3
(agent) Registering job 123514. Type: ios-biometrics-disable-evaluateAccessControl
4
....highaltitudehacks.DVIAswiftv2 on (iPad: 13.3.1) [usb] # (agent) [467987] OS authentication response: false
5
(agent) [467987] Marking OS response as True instead
6
(agent) [467987] Biometrics bypass hook complete (evaluatePolicy)
7
(agent) [467987] Localized Reason for auth requirement (evaluatePolicy): Please authenticate yourself
8
(agent) [987319] Localized Reason for auth requirement (evaluatePolicy): Please authenticate yourself
9
(agent) [537955] Localized Reason for auth requirement (evaluatePolicy): Please authenticate yourself
10
(agent) [186767] Localized Reason for auth requirement (evaluatePolicy): Please authenticate yourself
11
(agent) [186767] OS authentication response: false
12
(agent) [186767] Marking OS response as True instead
13
(agent) [537955] OS authentication response: true
14
(agent) [987319] OS authentication response: true
15
(agent) [467987] OS authentication response: true
16
(agent) [467987] Biometrics bypass hook complete (evaluatePolicy)
17
(agent) [987319] Biometrics bypass hook complete (evaluatePolicy)
18
(agent) [537955] Biometrics bypass hook complete (evaluatePolicy)
19
(agent) [186767] Biometrics bypass hook complete (evaluatePolicy)
20
(agent) [467987] Localized Reason for auth requirement (evaluatePolicy): Please authenticate yourself
21
(agent) [987319] Localized Reason for auth requirement (evaluatePolicy): Please authenticate yourself
22
(agent) [537955] Localized Reason for auth requirement (evaluatePolicy): Please authenticate yourself
23
(agent) [186767] Localized Reason for auth requirement (evaluatePolicy): Please authenticate yourself
24
(agent) [186767] OS authentication response: false
25
(agent) [186767] Marking OS response as True instead
26
(agent) [537955] OS authentication response: true
27
(agent) [987319] OS authentication response: true
28
(agent) [467987] OS authentication response: true
29
(agent) [467987] Biometrics bypass hook complete (evaluatePolicy)
30
(agent) [987319] Biometrics bypass hook complete (evaluatePolicy)
31
(agent) [537955] Biometrics bypass hook complete (evaluatePolicy)
32
(agent) [186767] Biometrics bypass hook complete (evaluatePolicy)
33
Copied!
References:
  • https://developer.apple.com/documentation/localauthentication?language=objc
  • https://developer.apple.com/documentation/localauthentication?language=swift
Copy link