iCloud Keychain

[susumuota]

Hi, thanks for the great extension!

I'm using iOS Safari + Snort + Nostore which works very well. However, I would like to store my private key in a more secure way.

Is it possible to access iCloud Keychain (or similar one) from the Safari extension? It would be great if the extension would store the private key in an encrypted area.

[ursuscamp]

Thank you for your interest!

Currently, the browser APIs for extensions do not allow access to keychain (as far as I can tell since they are a bit of a mess). However, all Safari extensions come packaged with a native application wrapper. It is possible, I believe, through native messaging, to access those native services through the application wrapper.

It is my plan for the next major release, whenever that is, to move key management into the native portion of the app, utilizing the Apple keychain. Also, potentially make use of other OS security features like biometrics, where applicable.

I am currently exploring options for this.

I will keep this open as a tracking issue. Thanks again!

[susumuota]

Thank you!

That sounds promising. I'm looking forward to see next release!

I don't know well about biometrics but recently I often hear the news about password less (passkeys?) authentication. It also would be great addition to the extension.