undefined | Better HN

story

0 pointszelly6y ago0 comments

You are more likely to lose your data while the computer is on and drives decrypted than when it is off. The threat model for FDE is thieves or government physically stealing your drive. Much more people get pwned in software than physically. I mean you don't just leave root shells laying around do you?

0 comments

icebraining6y ago

The question was whether the keychain really protects from those software attacks. I wondered mostly because I know that Windows will allow any process running as a certain user to decrypt data stored by any other process (at least if it's stored using the Data Protection API, like Chrome does for its passwords), so it only really protects your data from other users and their malware.

It seems that macOS authenticates each process, so that might provide some extra security.

j / k navigate · click thread line to collapse

0 comments

icebraining6y ago

It seems that macOS authenticates each process, so that might provide some extra security.

j / k navigate · click thread line to collapse