It is not for the password manager...
It's just to connect to the google account.
It is not a service to connect to other ones without passwords.
Tibert
joined 1 year ago
So first, no, all the files should not be accessible : There are special not "files", but keys, like the key used for this method. These keys pose a huge security risk of they are leaked somehow. The key can be something used to encrypt the device/disk, encrypt a connection, and other things associated with encryption.
And because of that security risk, they are often stored in a special chip or simulated chip (like the simulated tpm 2.0 on pc cpu), and not just "stored" so any malware or who knows what can access them just by reading the drive.
Second, the key is never transfered. When you connect to another device, that other device will get another key. Or maybe could it be backed up somehow in case of recovery on another phone? But that would defeat the entire purpose of this.
How Google can do to allow you to connect to another device if the first one is lost, not sure. But it would certainly either ask for a password and a 2fa method.
And it's expected as you still had that device. And it's not the same key, a new key has been created for that new device. Now if that device cannot be accessed?
Nothing of that?
You don't need to export or know what is the key.
The key is different for each device.
You won't need to?
The key is for a single device. Logging in on another one is going to generate another key.
They key is secured with the pin of the device, so when you try to log in, you can use the pin to log in, and not the password.
It can be cracked in less than a second?
If someone never loses their phones, laptop... Maybe it's secure.
But if someone steals it, how secure can it be? Is the key protected by the pin encryption? If so the encryption is now useless.
Here is a French video about Micode interviewing the French DGSE : https://youtu.be/g_jEz6aF2b4?si=-sUAIvDf4F7-7kGc
They crack the phone security in 4 seconds with the pin beeing : Mic0rp2022. The software used is hashcat, an open source tool.
Mot likely it won't need to have chrome. However maybe Google services may be required.
However it is also very likely, if a device cannot support such feature, it will only require a password and 2fa.
Circular isn't a great idea, and here are most of the idea why it is not : https://electronics.stackexchange.com/questions/528821/why-dont-we-have-a-circular-usb-port
USB required to have a stable connexion, as it's a digital signal and not an analog as jack ports, which just sends curent through it. Rotating the connector could maybe introduce issues for signal integrity.
The usb connector has much more connectors than a jack port. It would take a very long hole to fit them all. (usb 3+, usb C...)
Size constraint. USB C is flat, a round port is not. So it's bigger in 1 way, but smaller in the other, and so creates more design challenges.
Most of the time, the cache is limited in space. Unless you need the 1-1.5gB of space, it won't affect much.
The guy who gets scammed by a fake women bot account.
The person who reads a lazy ai article.
It benefits a lot of people, but not the ones who have a direct use of the ai for themselves.
Well I noticed a difference between duckduckgo and Ecosia, both taking results from Bing. Not sure if it's the language setting, or something else.
I like Firefox mostly because it's cool to have engine competition. I mostly use the default dark theme. It looks good enough for me. I don't look much at the top when browsing.
On android it's still lagging behind the chromium competition. And having mismatched browsers isn't great for syncing. So I just use Firefox on android too, good enough.
Tho, if miss matching wasn't an issue, personally I think I would use Kiwi browser. It's an open source chromium browser which supports chrome extensions.