• umami_wasabi
    link
    fedilink
    arrow-up
    5
    arrow-down
    4
    ·
    1 year ago

    I wonder how they did it. The sync data is supposed to be protected by E2EE where the key is derived from the user password or an separate sync password, at least before I abandon Chrome and go FF few years ago.

      • umami_wasabi
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        Yes. I read that. Thank you.

        And thanks the person clarifying it.

    • Platform27
      link
      fedilink
      English
      arrow-up
      6
      arrow-down
      1
      ·
      1 year ago

      Last I looked, Chrome’s sync is not E2EE. Next to nothing (user space) is E2EE, in Google’s ecosystem. By default it’s only Encryption in Transit. I think you can enable a Passphrase (encryption on device), but that’s optional.

      • umami_wasabi
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        Idk then. I had a separate sync password which will not sync anything after logged on in Chrome until I gave that password.

    • ChaoticNeutralCzech@feddit.de
      link
      fedilink
      arrow-up
      5
      arrow-down
      2
      ·
      1 year ago

      Encrypted between… Chrome and Chrome? Two installations of Google’s non-FOSS browser? You never really had control over that data.