Hacker News new | ask | show | jobs
by ninjay 4745 days ago
> The private key is encrypted with the user's password, which is not retained by Apple except in a hashed form.

> the private key is decrypted using the password and sent to the device.

wait, where is this private key coming from then? your other devices?
1 comments
nknighthb 4745 days ago
Either Apple would generate it server-side, or the first device to "sign up" would generate it.

Remember, I'm only explaining a hypothetical method by which the Apple system could work, consistent with Apple's statements and behavior I've observed from my iPhones, iPads, and Macs. It's not an explanation of a strictly secure system.

link
ninjay 4744 days ago
> would generate it.

where is it stored though?

link
rdouble 4744 days ago
in the Keychain
link
ninjay 4744 days ago
sigh
link
nknighthb 4744 days ago
Did you fundamentally misinterpret my sentence? The password is not retained by Apple, the private key is retained, in encrypted form.
link