Signal under fire for storing encryption keys in plaintextstackdiary.comexternal-linkcross-posted to: fossprivacy@lemmy.ca Nemeski ( @neme@lemm.ee ) Privacy Guides@lemmy.oneEnglish • 2 months ago message-square28fedilinkarrow-up1116
arrow-up1116external-linkSignal under fire for storing encryption keys in plaintextstackdiary.com Nemeski ( @neme@lemm.ee ) Privacy Guides@lemmy.oneEnglish • 2 months ago message-square28fedilinkcross-posted to: fossprivacy@lemmy.ca
minus-square pearsaltchocolatebar ( @pearsaltchocolatebar@discuss.online ) linkfedilinkEnglish43•2 months agoBut… That’s how encryption keys are stored.
minus-square boredsquirrel ( @boredsquirrel@slrpnk.net ) linkfedilinkEnglish16•edit-22 months agoopportunistic TPM integration would be nice. I.e. use the security chip of the device, if one is found. Otherwise use password. OR use a Nitrokey etc, which can act as a secure device to store these keys too. Take that, Windows. You dont need a builtin TPM if you can use a Nitrokey 3 with a secure element, externally.
But… That’s how encryption keys are stored.
opportunistic TPM integration would be nice.
I.e. use the security chip of the device, if one is found. Otherwise use password.
OR use a Nitrokey etc, which can act as a secure device to store these keys too.
Take that, Windows. You dont need a builtin TPM if you can use a Nitrokey 3 with a secure element, externally.