• smileyhead@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    3
    ·
    1 year ago

    Keys, like everything in digital devices, are just strings of data. So if they are on device, it’s the matter where they are stored on the device.

    Google and Apple implementations are going to store them in secure TPM chip, basically once written there should be no way (people knowing darker side of TPM can disagree) to get them back. But, if I understand correctly, there is no forced way how to store them in the spec, there can just be a way Google implement it in such a way, hope they add open API to Android.

    • indigomirage@lemmy.ca
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      It’s 1s and 0s all the way down (notwithstanding qbits…). But it all comes down to workflow and reducing friction of use securely. How will Bitwarden (and others) sit within the process? That remains to be seen. In the meantime, I’m going to see how it goes as I’m not switching gears until I have a thorough understanding of the actual implementation wrt general operation, multiple devices, family accounts (Bitwarden ‘organizations’), backups and recovery, and how to teach and support non-tech-savvy family members through the change).

      It absolutely looks promising, but too risky to be bleeding edge.