Comment on Signal under fire for storing encryption keys in plaintext

<- View Parent
eco_game@discuss.tchncs.de ⁨4⁩ ⁨months⁩ ago

As the article states, currently all processes are able to read the file which contains the key. Instead, you could store the key in the macOS Keychain (and Linux/Windows equivalents), which AFAIK is a list of all sorts of sensitive data (think WiFi passwords etc.), encrypted with your user password. I believe the Keychain also only let’s certain processes see certain entries, so the Signal Desktop App could see only its own encryption key, whereas for example iMessage would only see the iMessage encryption key.

source
Sort:hotnewtop