-
Notifications
You must be signed in to change notification settings - Fork 73
Credential Cache Memory
Brandon Davis edited this page Feb 6, 2018
·
1 revision
Your master password exists in two places.
- Briefly while you type your password in and unlock your database, it exists in the HTML document of the browser pop-up.
- For a specified period of time, your password is transmitted via Message Passing to the Tusk Background page, where it lives encrypted in-memory.
In-memory encryption safeguards against a casual scan of memory. The encryption key is stored within the same background memory. Background memory is lost when the browser exits or when your computer is powered off. In many cases, it can persist through a "sleep" or screen lock.
Your password only touches the Popup's HTML document. As soon as the popup closes, your master credentials are lost.