1

How persistent is the Android KeyStore, whether hardware-backed (via TrustZone) or not? Do the keys that are generated within the KeyStore get deleted after the creating app is uninstalled?

Do they also get deleted upon a factory reset? (especially hardware-backed ones, not sure if a factory reset also wipes TrustZone). Can other apps access the key material (use/read them) if they know the alias?

halfer
  • 19,824
  • 17
  • 99
  • 186
user1118764
  • 9,255
  • 18
  • 61
  • 113

1 Answers1

2

Seems like key material within the KeyStore doesn't survive a factory reset, and gets wiped once the app creating it is uninstalled. Additionally, depending on the Android version and key configuration, it might also get wiped upon device lockscreen modifications. Source

user1118764
  • 9,255
  • 18
  • 61
  • 113