Content
@
0 reply
0 recast
2 reactions
Greg
@greg
What are the security differences between storing a seed phrase in the following ways: - Locked note in iCloud - Password-protected in Keychain like how Rainbow does it - largeBlob with a passkey in iOS17+ I think I understand the UX implications of each, but curious about the technical side
10 replies
5 recasts
19 reactions
Joe Blau 🎩
@joeblau
- DO NOT USE NOTES. They don't enforce any secure data practices since they are just stored on disk (See Disk risks on right) - KeyChain is the best option right now - A PassKey is just replaces your password — It would be something that you could use to unlock your KeyChain (Wallet in crypto)
1 reply
0 recast
1 reaction
Greg
@greg
hmm but my locked notes are securely synced via iCloud Maybe I’m misunderstanding ?
1 reply
0 recast
0 reaction
Joe Blau 🎩
@joeblau
The problem is that the a file on disk mean anyone who hacks your computer can grab it, it has no data integrity, and will not be securely deleted, and it doesn't have secure sync. It does have a password and it is backed up into iCloud but that doesn't mean it's going to back up the correct bits.
1 reply
0 recast
0 reaction
Greg
@greg
Interesting, thanks for explaining. So I’m guessing the “Secure Notes” section of the Keychain Access app on Mac is a more secure way to store sensitive text?
1 reply
0 recast
0 reaction
Joe Blau 🎩
@joeblau
Bingo! That will actually be cryptographically secure. checksummed to make sure that it's correct forever, and deleted in a way that it won't be recoverable.
1 reply
0 recast
0 reaction
Greg
@greg
Good to know, thanks!
0 reply
1 recast
1 reaction
