I'm using samsung galaxy s7 and checked it's support hardware-backed keystore. (Settings->Security->Credential storage->Storage type)
Then, I tried to generate a new keypair and check with KeyInfo's isInsideSecureHardware, but it returns false. Why not the key stored in the hardware backed keystore? Here is my code: KeyPairGenerator kpg = KeyPairGenerator.getInstance("EC", "AndroidKeyStore");Builder kpgparams = (new Builder(keyname, 6)).setAlgorithmParameterSpec(new ECGenParameterSpec(this.curve)).setDigests(new String[]{"SHA-256"}).setUserAuthenticationRequired(false).setUserAuthenticationValidityDurationSeconds(300); kpg.initialize(kpgparams.build());KeyPair kp = kpg.generateKeyPair();:KeyFactory factory = KeyFactory.getInstance(privateKey.getAlgorithm(), "AndroidKeyStore");KeyInfo keyInfo = factory.getKeySpec(privateKey, KeyInfo.class);boolean secure = keyInfo.isInsideSecureHardware(); Thanks for any help -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to android-developers+unsubscr...@googlegroups.com. To post to this group, send email to android-developers@googlegroups.com. Visit this group at https://groups.google.com/group/android-developers. To view this discussion on the web visit https://groups.google.com/d/msgid/android-developers/b368abad-41ee-441a-913e-8ab89a559c1c%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.