I believe that Apple is burning their cryptographic key into readonly memory, so... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		floatingatoll on Sept 30, 2020 \| parent \| context \| favorite \| on: Apple’s T2 security chip jailbreak I believe that Apple is burning their cryptographic key into readonly memory, so they would need to build out a readwrite pipeline and provide a secondary keystore option for "non-default" users that is writable by the hardware itself. That's a tall ask, but it's feasible, so we're good so far. The benefit to expert users with crypto competence is clear. How would this benefit third-party repair shops, though?

Nextgrid on Oct 1, 2020 [–]

The point is that you'd backup the keys in advance (when you initially set up the machine) and when the machine dies and your T2 is fried the repair shop can just replace it with a new T2, load the backed-up keys into it and give you back your machine with the data intact.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact