Flutter Biometric Crypto

Flutter Biometric Crypto Logo

Overview

Flutter Biometric Crypto is a plugin that bridges the gap between biometric authentication and cryptographic security. Most biometric packages just return a boolean ("Yes, it's the user")—this package actually uses the biometric interaction to unlock a hardware-backed encryption key, ensuring that your data is mathematically inaccessible without a physical biometric prompt.

The Status Quo

Developers often confuse "Local Authentication" (simple authentication) with "Biometric Encryption". They might store an API token in Shared Preferences and just ask for a fingerprint to reveal it. If the device is rooted, that token is easily stolen. True security requires the OS to refuse decryption unless the biometric sensor is triggered.

Market Proposition

Seamless implementation of high-security standards.

  • Hardware Security: Uses Android Keystore and iOS Secure Enclave.
  • No storage of keys: The encryption key never leaves the secure hardware.
  • Fallbacks: Handles fallback to device passcode where appropriate (configurable).

Usage

import 'package:flutter_biometric_crypto/flutter_biometric_crypto.dart';

final crypto = FlutterBiometricCrypto();

// Encrypt a sensitive token
final encrypted = await crypto.encrypt(
  payload: 'my_super_secret_token', 
  promptInfo: PromptInfo(title: 'Authenticate to save token')
);

// Decrypt later
final decrypted = await crypto.decrypt(
  payload: encrypted, 
  promptInfo: PromptInfo(title: 'Authenticate to access token')
);

Hashtags

#Flutter #MobileSecurity #Biometrics #Cryptography #Android #iOS