security-best-practices

SKILL.md

Expert decision frameworks for iOS security choices. Claude knows Keychain APIs — this skill provides judgment calls for when security measures add value and implementation trade-offs.

The trap: Pinning without rotation plan. When cert expires, app stops working.

| Auth tokens | Keychain | AfterFirstUnlock | | Passwords | Keychain | WhenUnlocked | | Biometric secret | Keychain | WhenPasscodeSetThisDeviceOnly | | User preferences | UserDefaults | None needed | | Sensitive files | Files | .completeFileProtection | | Cache | Files/Cache | None needed |

Expert security decisions for iOS/tvOS: when Keychain vs UserDefaults, certificate pinning trade-offs, API key protection strategies, and secure data lifecycle management. Use when storing sensitive data, implementing authentication, or hardening app security. Trigger keywords: Keychain, security, certificate pinning, encryption, API key, token storage, secure storage, biometric, jailbreak, data protection Source: kaakati/rails-enterprise-dev.

View raw