[Webkit-unassigned] [Bug 193590] add support for encrypted localstorage

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Wed Jun 15 12:23:08 PDT 2022


--- Comment #6 from Darren Mo <empire_utopian.0v at icloud.com> ---
(In reply to Sihui Liu from comment #5)
> (In reply to Darren Mo from comment #3)
> > +1 to encrypting the entire `WebsiteDataStore`.
> > 
> > One use case would be to add an extra layer of protection for sensitive data
> > in addition to filesystem-level encryption. As far as I know, there is no
> > per-user encryption on macOS and no per-app encryption on Darwin platforms.
> > 
> Can you be more specific about the usecase? What do you want to achieve with
> this API?

Expanding on what I mentioned above:

- Per-user encryption. Imagine multiple users share a computer. One user can read another user’s data without needing their password. (Dunno if filesystem permissions mitigate that somewhat but imagine the user has root privileges.)

- Per-app encryption. Imagine multiple users share a single account or one user happens to know the account password of another user. In general, data should be readable by both users but perhaps one user has really sensitive information that they would like to keep private to themselves.

You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20220615/c61cae71/attachment.htm>

More information about the webkit-unassigned mailing list