2016 MBP & the T1 Secure Enclave Chip

Discussion in 'MacBook Pro' started by ck2875, Oct 27, 2016.

  1. ck2875 macrumors 6502a

    ck2875

    Joined:
    Mar 25, 2009
    Location:
    Brighton
    #1
    I wasn't able to watch the keynote, but saw mention of Touch ID using a T1 secure enclave. Anyone know if the presence of this enclave allows for device encryption like iOS devices offer? I know we have FileVault 2 in macOS/OS X, but I've read that FileVault isn't that secure anymore.
     
  2. killawat macrumors 65816

    Joined:
    Sep 11, 2014
    #2
    Some of the keying material may be stored in the secure enclave but I expect those details to be sparse until we get the unit.

    Where did you hear that FV is insecure? FV 2 is fine and speedy.
     
  3. killawat macrumors 65816

    Joined:
    Sep 11, 2014
    #4
  4. Rigby macrumors 601

    Joined:
    Aug 5, 2008
    Location:
    San Jose, CA
    #5
    There is always a risk that someone will find a hardware hack to retrieve the encryption keys from the memory if the computer is running or sleeping (including some extreme methods that involve freezing and extracting the memory chips). To get the full security, shut the computer down when you're away from it (which will clear the RAM including the keys). The encryption scheme itself is still sound.
     

Share This Page