Mastodawn

Félix

Shameless plug: thanks to some hard work by my awesome iCloud Keychain colleagues, all your keychain secrets are belong to you. They’re end-to-end encrypted and we have no way to read them: https://support.apple.com/guide/security/icloud-keychain-security-overview-sec1c89c6f3b/1/web/1

iCloud Keychain security overview

With the iCloud Keychain, users can securely sync their passwords between iPhone, iPad, and Mac devices without exposing that information to Apple.

Apple Support

@fay59 @rmondello Does this mean that I lose everything stored in my iCloud KeyChain if I lose my Mac, have no other iOS devices, and so my iCloud account is the only form of storage left?

@MildlyAggrievedScientist @rmondello No: if you can both log in to your iCloud account, and you can provide the password of your lost/stolen Mac’s user account, you will be able to recover the keychain. https://support.apple.com/en-us/guide/security/secdeb202947/web

Secure iCloud Keychain recovery

iCloud Keychain recovery allows users to escrow their keychain with Apple without allowing Apple to read the passwords and other data it contains.

Apple Support

@fay59 @rmondello There appear to be lots of hidden assumptions here and, without knowing them, I can't understand the security promise. Does it assume my password is strong enough to resist an offline guessing attack? Does it assume that an HSM can effectively rate limit guesses?

@MildlyAggrievedScientist @rmondello I’m not able to talk about topics not covered in the guide, sorry. If I’m made aware of more information coming out on that topic I can try to remember to let you know.

@fay59 @rmondello Escrow is defined as safeguarding valuables with a third party (e.g., https://www.merriam-webster.com/dictionary/escrow), so it shouldn't be surprised that the phrase "escrowed with Apple" would be unclear. The protection provided by any escrow arrangement is contingent on the rules governing when property may be released form escrow. If you can't/won't explain the rules your HSMs follow, then the article will only reassure those who cannot see how empty the promise is.

Definition of ESCROW

Definition of 'escrow' by Merriam-Webster

@MildlyAggrievedScientist @rmondello I know why it’s not giving you what you want to know. I’m not answering your question because it’s not my area and my director reads my toots, so (1) I don’t want to risk misrepresenting the technology, and (2) if my director feels this needs to be clarified, he has the avenues to make the information public which I don’t have.

@fay59 @rmondello Are you allowed to say who your director is?

@MildlyAggrievedScientist @rmondello That would be Ivan Krstić.

SolTwoOne Apr 27, 2023

@MildlyAggrievedScientist @fay59 @rmondello The escrow process is explained in some more detail in another section of the guide. https://support.apple.com/guide/security/escrow-security-for-icloud-keychain-sec3e341e75d/1/web/1

Escrow security for iCloud Keychain

iCloud provides a secure infrastructure for keychain escrow to help ensure that only authorized users and devices can perform a recovery.

Apple Support

Stuart Schechter Apr 28, 2023

@SolTwoOne @fay59 @rmondello Thanks! Interesting design and tradeoffs. If you discover the HSM code has any vulnerabilities, you either have to dump all the data or wait to push all the clients to a new cluster when you next hear from them. HSMs must have very long lifetimes. Is there a way to self-escrow if I provide a public key?

SolTwoOne Apr 28, 2023

@MildlyAggrievedScientist @fay59 @rmondello No, I don’t think so