Quote:
Originally Posted by turtle2472
Does anyone know if Mac OS's Keychain is encrypted? I'd like to put it in Dropbox too but don't want to if it's not encrypted. I'll get 1Password otherwise, just trying not to spend money on a program I don't need.
|
Yup. As far as I know, the keychains have always been protected with some level of encryption. Details from Apple on
what and
how are surprisingly hard to come by, but I did find this:
http://images.apple.com/server/macos...g_20080530.pdf
Quote:
A keychain is used to store passwords, keys, certificates, and other secrets. Due to the sensitive nature of this information, keychains use cryptography to encrypt and decrypt secrets, and they safely store secrets and related data
|
http://lists.apple.com/archives/Appl.../msg00017.html
Quote:
Triple DES, 3-key, EDE. The keychain as a whole is not encrypted; portions of individual keychain items that are sensitive are encrypted on their own. Certificates for example have no sensitive portions and are stored in the clear.
|
http://web.archive.org/web/200803190...ecurity_TB.pdf
Quote:
The keychain securely stores user names and passwords. All the password data in the keychain is protected using the Triple Digital Encryption Standard (3DES).
|
That last PDF is originally from
http://images.apple.com/macosx/pdf/M...ecurity_TB.pdf which is now a dead link. Since the Wayback Machine seems to have trouble pulling it, I've mirrored it locally here since it has some useful security advice:
http://applenova.com/etc/images/MacO...ecurity_TB.pdf