is this for security or something? i thought the whole id of touch id was that it's more secure than passcodes. for that matter, i don't understand why you are allowed to enter a code or a fingerprint all the time. seems like it should just be the print. what am i missing here?
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
enter passcode after restart...
- Thread starter McDLT
- Start date
- Sort by reaction score
IIRC, userland is encrypted with the passcode. I wonder if inputting the passcode after restart is required to decrypt things.
Entering a passcode basically unwraps an encryption key that's used to secure files on your device. On pre-Touch ID devices, locking the device throws away the unwrapped key, requiring you to enter your passcode again to unlock the phone.
On Touch ID devices, the unwrapped key is handed off to the Touch ID subsystem when the device is locked. So if you restart your phone, the Touch ID subsystem has no key to provide to unlock the phone. You need to enter the passcode at least once so it has the key to unlock the phone.
The Touch ID subsystem also deletes the key after 5 unsuccessful fingerprint reads, or after 48 hours of the phone being locked. It also deletes the key if Lost Mode is activated via Find My iPhone.
This is all for security, in case your phone is stolen and they try to use a copy of your print to unlock it, or to force your finger onto the sensor to unlock your phone against your will.
Touch ID is not more secure than a complex alphanumeric passcode (although it is more secure than a 4 digit PIN), but serves as a relatively secure mechanism to prove that you're the person that knows the passcode. It's not a complete replacement, just a convenient alternative.
On Touch ID devices, the unwrapped key is handed off to the Touch ID subsystem when the device is locked. So if you restart your phone, the Touch ID subsystem has no key to provide to unlock the phone. You need to enter the passcode at least once so it has the key to unlock the phone.
The Touch ID subsystem also deletes the key after 5 unsuccessful fingerprint reads, or after 48 hours of the phone being locked. It also deletes the key if Lost Mode is activated via Find My iPhone.
This is all for security, in case your phone is stolen and they try to use a copy of your print to unlock it, or to force your finger onto the sensor to unlock your phone against your will.
Touch ID is not more secure than a complex alphanumeric passcode (although it is more secure than a 4 digit PIN), but serves as a relatively secure mechanism to prove that you're the person that knows the passcode. It's not a complete replacement, just a convenient alternative.
Passcodes are potentially more secure. Touch ID is mainly for convenience. This is why the passcode has precedence over Touch ID after restarting the phone.
I wondered the same. I'm sure it's just for extra security, but it does seem unnecessary. I also get annoyed to have to manually enter my iTunes password after restarting.