Are my bookmarks when using sync end to end encrypted?

Varamil · October 6, 2021, 2:24pm

Rethanis · October 7, 2021, 7:32am

→ How does my data stay private? How is it encrypted?

We use the built-in custom passphrase feature from Chromium sync and encrypt everything client-side. Instead of letting the user pick a passphrase, which may be weak, we force the passphrase to be the BIP39 encoding of the sync seed. The rest of the encryption is handled by Chromium as follows:

BIP39 phrase is key-stretched using scrypt(N = 2^13, r = 8, p = 11). New clients need the scrypt salt in order to derive the key.

Then the stretched key is used directly as a AES128-CTR-HMAC encryption key.

Topic		Replies	Views
Can Brave see my sync data like bookmarks, history, open tabs, etc since the sync data is only client-side encrypted and not end-to-end encrypted? Browser Support ios , android	2	1576	November 22, 2022
Sync failing on Ubuntu 22.04: cannot access safe storage Desktop Support linux	3	2784	September 23, 2022
Possible vulnerability in the Sync feature \| MetaMask Hack Desktop Support windows	3	772	July 30, 2021
Where is username and password data saved? Desktop Support sync	4	1136	February 26, 2019
How do i know my passwords which are synced between windows and android are end-to-end encrypted?	2	272	October 28, 2023
Bricked my laptop, lost my text file containing the sync passphrase Sync linux	6	455	March 21, 2023
Decentralized browser sync Sync windows , linux , android , browser , feature-request	7	594	April 19, 2023
Can a rogue employee at Brave access my stored passwords? Desktop Support linux	2	376	September 20, 2022

Are my bookmarks when using sync end to end encrypted?

Related Topics