Comment by arianvanp

5 months ago

Check out `man sc_auth`. There's also an exportable variant where the private key is encrypted using the secure enclave as opposed to generated on the secure enclave:

    % sc_auth create-ctk-identity -l ssh-exportable -k p-256 -t bio
    % sc_auth list-ctk-identities
    p-256    A581E5404ED157C4C73FFDBDFC1339E0D873FCAE bio  ssh-exportable ssh-exportable               23.11.26, 19:50 YES  
    % sc_auth export-ctk-identity -h A581E5404ED157C4C73FFDBDFC1339E0D873FCAE -f ssh-exportable.pem
    Enter a password which will be used to protect the exported items:
    Verify password:

You can then re-import it on another device

    % sc_auth import-ctk-identities -f ssh-exportable.pem.p12 -t bio
    Enter PKCS12 file password:

I'll add this to the guide

35 comments

arianvanp

Reply
lxgr  5 months ago

Is there a way to import an existing (compatible) key and still mark it as non-exportable?

That seems more useful for the SSH key scenario: Generate a key in memory and back it up to offline storage once, and otherwise only use it in a way totally non-exportable by any malware.

This sentence

> The exportable private key is encrypted with Elliptic Curve Encryption Standard Variable IVX963 algorithm which is backed by a Secure Enclave key.

makes it sound like exportable keys might inherently not be Secure Enclave resident in Apple's implementation, which would be unfortunate, as anything else can still be accessed by malware with kernel-level privileges.

(GPG, and I believe also PIV, allow importing externally-generated keys without necessarily marking them exportable; they'll just, correctly, lack any attestation statement about having been generated in secure hardware.)

  • cyberax  5 months ago

    No. There is no way to import an existing key into the Secure Enclave. Only Apple is allowed to do that.

    The best you can do is use the SE to decrypt the key and then use the clear text key for encryption/decryption.

    This also means that passkeys on macOS/iOS are (at some point) exposed as clear text.

    • big-and-small  5 months ago

      > The best you can do is use the SE to decrypt the key and then use the clear text key for encryption/decryption.

      AFAIK this is what "secretive" was doing all the time.

      3 replies →

  • awaikour  5 months ago

    Another option is to generate a key and put it on an offline storage, and have a second key only in the SE. This means you'll need to upload two public keys to places to have a backup instead of one, but I think would otherwise achieve the same thing.

    The nice thing with this is you can keep your backup public key easily accessible. I try to keep a primary and backup Yubikey on everything important, but you have to physically get the backup Yubikey in order to add it to a site.

    • vladvasiliu  5 months ago

      The issue with this approach is that when you change your device for whatever reason, you'll need to upload the new key everywhere.

rjdj377dhabsn  5 months ago

How is this method any different from encrypting the private key without any secure enclave?

Isn't it just using a password derived key?

  • arianvanp  5 months ago

    The key is stored encrypted with a unique symmetric key that only your secure enclave knows until the point that you export it. It then re-encrypts it with the password.

    Until you export it it's just as strong as an enclave-generated one.

    Obviously don't keep the exported password encrypted key around and don't use a weak password for export.

    • gruez  5 months ago

      >The key is stored encrypted with a unique symmetric key that only your secure enclave knows until the point that you export it. It then re-encrypts it with the password.

      But what's the security benefit of this compared to having a keyfile? So far as I can tell from the commands you provided, there's no real difference, aside from a hacker having to modify their stealer script slightly.

      21 replies →

ggm  5 months ago

Can you explain which keys in the secure enclave make this work because it has at least two keysets: a public-private keypair locked to the root key Apple instantiated in hardware as fused links in the chip and so in theory this could include private keys common to all the devices in this chipset generation, and the locally generated unique keys which are tied to this specific device.

Using the first pair or products of the first pair, means in principle your private key is protected by the goodwill of Apple only: if you allow it to exist at rest in a form only this shroud protects, then Apple can read the private key unless the symmetric algorithm used to "unlock this private key with your password" is a good one, and you chose a password wisely. I haven't used the function so I can't comment how they constrain what you put in as a personal lock on these blobs.

I am not a cryptographer.

sroussey  5 months ago

“ This is might be considered secure but is convenient for key backup.”

Might want to clean up that sentence.