A place for developers to talk about building on Farcaster.

/dev

What are the security differences between storing a seed phrase in the following ways:

- Locked note in iCloud
- Password-protected in Keychain like how Rainbow does it
- largeBlob with a passkey in iOS17+

I think I understand the UX implications of each, but curious about the technical side

I like baking /goodbread and building apps on web3 protocols. DevRel @ ENS Labs. gregskril.com

largeBlob is interesting, I didn't realize that was part of the webauthn spec. Pretty positive implications for e2ee products IMO

you might also like the prf extension

https://github.com/w3c/webauthn/wiki/Explainer:-PRF-extension

Making investing together better https://onit.chat | Variant Founder Fellow | Cambridge Alum | Formerly Ireland's #3 powerlifter (74kg)

I do indeed! I was aware of prf when I was looking into where/how encryption keys might be generated when using webauthn