Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

What does Passcode option do? #650

Open
webcapcha opened this issue Aug 4, 2019 · 6 comments

Comments

@webcapcha
Copy link

commented Aug 4, 2019

Thank you for developing this application.

I'm interesting in option "Add an app passcode to lock the app and encrypt on-device key storage."
What does it exactly mean? Without this option enabled local database stays unencrypted?

If yes what does e2e encryption means?

@mobitar mobitar transferred this issue from standardnotes/web Aug 5, 2019

@mobitar

This comment has been minimized.

Copy link
Member

commented Aug 5, 2019

The local passcode allows you to add a lock screen to the app, and also encrypts your keys. If you don't add a passcode, your data is stored locally encrypted with your account keys, but your account keys are stored locally not encrypted (since we don't have a key to encrypt them with). Adding a local passcode will then encrypt the account keys.

@webcapcha

This comment has been minimized.

Copy link
Author

commented Aug 5, 2019

Sorry for stupid question, but does this mean that if somebody steal my storage it can decrypt database with key? Because key itself is unencrypted.

@mobitar

This comment has been minimized.

Copy link
Member

commented Aug 6, 2019

If you don't have a local passcode, and someone is able to gain physical access to your device, then of course they will be able to see the data just like you're able to see it without additional verification. If you add a local passcode, then this will prevent that.

@webcapcha

This comment has been minimized.

Copy link
Author

commented Aug 6, 2019

Oh sorry I might be put it badly. Of course I understand that without passcode anyone could open application and see notes like i'm able to see it without additional verification.

My question is little different.
Without passcode as you said starnardnotes database in encrypted but account key is not.

Imagine situation that for experiment i will send my database and account key for bad guy. Can database be decrypted using account key (which is unencrypted) in this case?

@mobitar

This comment has been minimized.

Copy link
Member

commented Aug 7, 2019

Yes, database can be decrypted with account key. If you want protection from physical theft or access, local passcode is the only way to go.

@mobitar

This comment has been minimized.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
2 participants
You can’t perform that action at this time.