A place for developers to talk about building on Farcaster.

/dev

What are the security differences between storing a seed phrase in the following ways:

- Locked note in iCloud
- Password-protected in Keychain like how Rainbow does it
- largeBlob with a passkey in iOS17+

I think I understand the UX implications of each, but curious about the technical side

- DO NOT USE NOTES. They don't enforce any secure data practices since they are just stored on disk (See Disk risks on right)
- KeyChain is the best option right now
- A PassKey is just replaces your password — It would be something that you could use to unlock your KeyChain (Wallet in crypto)

I like baking /goodbread and building apps on web3 protocols. DevRel @ ENS Labs. gregskril.com

hmm but my locked notes are securely synced via iCloud

Maybe I’m misunderstanding ?

Interesting, thanks for explaining. So I’m guessing the “Secure Notes” section of the Keychain Access app on Mac is a more secure way to store sensitive text?

The problem is that the a file on disk mean anyone who hacks your computer can grab it, it has no data integrity, and will not be securely deleted, and it doesn't have secure sync. It does have a password and it is backed up into iCloud but that doesn't mean it's going to back up the correct bits.