| Rich Freeman via plug on 16 Jan 2026 08:22:58 -0800 |
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
| Re: [PLUG] Woo Hoo! I Made Hackaday! |
Google actually took an approach like this in their design of user profile encryption on ChromeOS. They didn't use the TPM in a conventional way, but they used it in a manner that forces all decryption attempts to go through it, with unlimited retries. The TPM itself effectively limits the brute force rate, and the process relies on a key stored in the TPM so it can't be done in any other way.I'm a bit surprised that it lets you guess passwords forever, but I suppose if I knew it would take 180 trillion years to brute force I might not bother writing any code to lock out the party that's trying to crack the code, either.
-- Rich
___________________________________________________________________________ Philadelphia Linux Users Group -- http://www.phillylinux.org Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce General Discussion -- http://lists.phillylinux.org/mailman/listinfo/plug