Open Bug 1463865 (oskeystore) Opened 7 years ago Updated 2 months ago

[meta] Support OS-level secret-keeping

Categories

(Core :: Security: PSM, enhancement, P3)

Product:
Core
Component:
Security: PSM
Version:
61 Branch
Type:
enhancement

Tracking

()

People

(Reporter: jcj, Unassigned)

References

(Depends on 4 open bugs, Blocks 1 open bug)

Details

(Keywords: meta, Whiteboard: [psm-tracking])

This meta-bug tracks designing and then implementing an interface for generating, storing, and retrieving secrets from the operating systems on which Firefox runs.
See Also: → 1464827
Priority: -- → P3
Whiteboard: [psm-tracking]
What is the use case for this feature?
> What is the use case for this feature? This is going to be used for passwords stored in Firefox to start with (and should be used for all sensitive data Firefox puts on the hard drive in future).
AIUI, the first project to use this feature will be web payments, in order to store credit card data more securely. I believe that password storage will happen after we deploy this feature for web payments.
Blocks: 1556794
Alias: oskeystore
Depends on: 1562324
Assignee: franziskuskiefer → nobody
Status: ASSIGNED → NEW
Priority: P3 → --
Priority: -- → P3
Depends on: 1498909
See Also: → 1695998
Severity: normal → S3
Depends on: 1586072

Hi, It seems that latest FF (and TB) supports now that feature, yes ?
"Require Device sign in to fill and manage passwords"

(In reply to duparchy from comment #5)

Hi, It seems that latest FF (and TB) supports now that feature, yes ?
"Require Device sign in to fill and manage passwords"

No - that setting doesn't store secrets in OS-provided storage. It's more like "check if you're authorized to use this machine before accessing secrets stored by Firefox".

If this prevents using someone's stored password by simply copying the profile, it's fine with me.

so what happens if I make a backup of the profile, then reinstall the OS, and then recover the firefox profile?
will it still all work, including passwords?

(In reply to Lazy Monkey from comment #8)

so what happens if I make a backup of the profile, then reinstall the OS, and then recover the firefox profile?
will it still all work, including passwords?

No, how could it? In any encryption scheme (that actually protects your data), if you lose the key then you've lost the data.

If you use Firefox Sync then that could function as a backupβ€”as long as you haven't forgotten your Firefox Accounts password ("the key", effectively).

We are also working on a "profile backup" feature that could be used once it's done. That will create an encrypted bundle of your profile data using a password, which would then be portable to another machine or after an OS re-install.

This seems to contradict Dana Keeler's response above : " No - that setting doesn't store secrets in OS-provided storage. It's more like "check if you're authorized to use this machine before accessing secrets stored by Firefox".

Flags: needinfo?(duparchy)

(In reply to duparchy from comment #12)

This seems to contradict Dana Keeler's response above : " No - that setting doesn't store secrets in OS-provided storage. It's more like "check if you're authorized to use this machine before accessing secrets stored by Firefox".

That was specifically in response to your question in comment 5:

Hi, It seems that latest FF (and TB) supports now that feature, yes ?
"Require Device sign in to fill and manage passwords"

I was talking about how Firefox currently works, not how this bug wants Firefox to work.

You need to log in before you can comment on or make changes to this bug.