Provides classes that:
Dual DAR enables customers to use two independent layers of encryption to protect stored information on End User Device (EUD) in a powered off or in an unauthenticated state. The solution is designed to adhere to the architecture and configuration requirements documented in the CSfC DAR Capability Package where Samsung Knox DualDAR mitigates against the risk to classified data from unauthenticated access when the device is powered off or unauthenticated. The Samsung Knox DualDAR solution will provide two separate layers for encryption and key generation. All data placed inside Workspace is dually encrypted by both layers.
IT admin via their Enterprise Mobility Management (EMM) solution can enable DualDAR during provisioning for both deployment modes, Knox Workspace or Knox Workspace on Fully Managed Device. For the Knox Workspace on Fully Managed Device configuration the entire device is managed. As such the device is required to be factory reset prior to provisioning (unless the device is new). The enterprise first provisions a Device Owner (DO) with the EMM agent becoming the DO and the device under management. The enterprise then creates a Knox Workspace on the Fully Managed Device. As part of Knox Workspace creation the enterprise can enable DualDAR.
Third party application developers can refer the Dual DAR Native developer guide to implement an independent second layer of encryption for work data.
|DualDARClient||This class is used by privileged application to invoke Dual DAR platform apis and receive platform callbacks.|
|DualDARPolicy||This class supports MDM(EMM) to create a workspace(container) protected with Dual DAR and provides APIs to access and set Dual DAR configurations.|
|DualDARPolicy.DUAL_DAR_VERSION_CODES||Enumeration of the currently known DUAL DAR version codes.|