Ensure iOS client behavior protects identity, health data, and session integrity under real-world attack surfaces.
Decision Criteria
- Sensitive data storage must use platform-secure primitives and data minimization.
- Authentication/session mechanisms must withstand token theft and replay scenarios.
- Privacy-sensitive telemetry must preserve utility without exposing user secrets.
- Client security controls must align with backend trust assumptions and rate-limit behavior.
Principal Practices
- Store tokens in Keychain with strict accessibility settings and lifecycle handling.
- Minimize health/profile data persisted offline and encrypt where platform policy requires.
- Ensure logout and account deletion purge sensitive local artifacts and pending queue payloads.
- Apply transport security best practices and certificate/pinning strategy when required by threat model.
Failure Modes & Anti-Patterns