I password protect my key for the sole threat model of me physically losing my d... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

ulrikrasmussen on Dec 18, 2021 | parent | context | favorite | on: Passage: A fork of password-store that uses age in...

I password protect my key for the sole threat model of me physically losing my device. I am aware that all other threat models that involve someone taking remote control of my device are not fully protected against, but it at least requires significantly more effort on their part versus just doing a scan for private keys on the file system.

SEJeff on Dec 18, 2021 | [–]

Why not use disk encryption for this threat model?

withinboredom on Dec 18, 2021 | [–]

> Why not use disk encryption for this threat model?

Most people don’t add a password to the disk encryption, meaning the keys can “easily” be extracted by MITM the contacts on the chip.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact