← Back to context

Comment by themafia

2 days ago

The presumption is that the contents being secured are /so/ valuable that locking my device is preferable to any leak of them whatsoever.

This is military level security and just isn't appropriate for most consumers. Particularly around something so rarely exercised and utilized by users as the boot process. A simple warning with a long timeout would have sufficed.

Aside from that you have a hardware vendor, sourced into an integrated product from another vendor, sold to a user, with various third party software interacting with it. This was always going to result in questionable experiences for end users.

3 comments

themafia

Reply
johncolanduoni  2 days ago

A warning doesn’t help at all. The main threat model for FDE is that someone steals your device and dumps the disk. If you don’t protect the boot process somehow, then you’re just storing the encryption key next to the data.

If you don’t care about that (which is not “military level security”, laptop thieves stealing creds is a thing), just don’t use FDE or use it with an on-boot password every time. No point in the theater.

  • themafia  2 days ago

    > laptop thieves stealing creds is a thing

    Two factor is a thing. FDE is such a 1990s idea.

    • johncolanduoni  2 days ago

      Wow. That’s a new one. Where exactly do you think the authentication tokens you obtain using 2FA are stored?