[Cryptography] In the latest unexpected ransomware twist ...
Peter Gutmann
pgut001 at cs.auckland.ac.nz
Sun Jun 13 20:38:31 EDT 2021
Nabil Alsharif <blit32 at circuitsofimagination.com> writes:
>There is no reason my email client (or anything other than my ssh client)
>should have access to my ssh keys unless I explicitly authorize that access.
>
>I can't say much about the design of Mac OS or iOS because I don't know much
>about them
The Apple keychain is permissioned so you can allow only one app, or group of
apps, access to a particular set of credentials via entitlements. There's
also conditional access, e.g. under certain circumstances, once-only after
user approval, and so on. It's really quite well done.
Peter.
More information about the cryptography
mailing list