According to https://source.android.com/security/authentication/fingerprint-hal.html :
1. Raw fingerprint data or derivatives (e.g. templates) must never be accessible from outside the sensor driver or Trusted Execution Environment (TEE). Hardware access must be limited to the TEE, if the hardware supports it, and must be protected by an SELinux policy. That is, the Serial Peripheral Interface (SPI) channel must be accessible only to the TEE, and there must be an explicit SELinux policy on all device files. TEE in this case refers to ARM TrustZone, similar to Apple's Secure Enclave. On Friday, October 30, 2015 at 1:29:16 AM UTC+8, mohamed...@backelite.com wrote: > > Hello, > I work in a project (for Android M) used Fingerprint authentication. > I do not find any official document that indicates if google guarantee > that : > - the FingerPrint is saved in secure zone (matériel secure like Apple) > - google not track the fingerPrints > > have you any idea or link ? > > Thank you > > > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to android-security-discuss+unsubscr...@googlegroups.com. Visit this group at https://groups.google.com/group/android-security-discuss. For more options, visit https://groups.google.com/d/optout.
