SID-DATA-09 — Runtime Memory Protection
| Property | Value |
|---|---|
| Owner | platform |
| Category | technical |
| CSF Function | protect |
| Group | Data Protection Controls |
Description
Sensitive data in process memory is minimised and protected:
(1) Load sensitive data (keys, PINs, credential content) into memory only when actively needed for an operation. (2) Clear/overwrite memory locations immediately after the data is no longer needed — do not rely on garbage collection alone. (3) For unencrypted confidential data in memory, overwrite released memory addresses to prevent memory forensics recovery. (4) Do not cache WSCA access credentials — each operation authenticates independently via the rawSign API. (5) Minimise window of exposure for decrypted key material.
Browser-based wallet relies on JavaScript garbage collection; explicit memory wiping is limited by the JS runtime. WebCrypto CryptoKey objects are non-extractable by default, providing some protection. Native wrappers (iOS, Android) can implement explicit memory zeroing.
Components
- Wallet Frontend
- Wallet iOS Wrapper
- R2PS Client
Framework Requirements
EUDI Security Requirements: WIN-8.4.1-Sec-03
FitCEM Wallet Instance: FIT-DS-12
ISO 27001 Annex A: A.8.12