Thierry Moreau <[email protected]> writes: >Client-side storage of long-term secrets can only be secured by dedicated >client-side hardware. Your mileage may vary.
In a perfect world, yes. However having an OS-provided, standardised mechanism that gets things mostly right (Apple Keyring) is far, far better than forcing every developer to invent their own one (Unix and to a lesser extent Windows), which 90% will get wrong. Peter. _______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
