Crossposted using Lemmit.
Original post from /r/opsec by /u/Phreaqin on 2023-07-03 18:14:59+00:00.
When using on-device encryption vs. not having it enabled, your Google password is the “master” password to view passwords regardless, correct? Is the only benefit of on-device encryption is that passwords AND the key are never stored by Google, but instead the key is derived from the password? Therefore preventing a file breach where someone could find the keys and access files.
BUT on-device encryption does NOT mean the device itself is the key to access the passwords, correct? Aka you do not require said device to access the passwords via the account, but only the key (aka the device password/account password) And just that the actual decryption is happening ON device?
I have read the rules.
You must log in or register to comment.