How do you store tokens securely on iOS using Keychain?

Keychain stores secrets encrypted and protected by the OS. Best practices: - Use appropriate accessibility levels (e.g., after first unlock) - Avoid logging tokens - Rotate tokens and support logout - Consider Secure Enclave for higher assurance use cases Also design server-side revocation because local deletion alone is not enough.