Can local storage ever be considered secure? [closed]

by

WebCrypto

The concerns with cryptography in client-side (browser) javascript are detailed below. All but one of these concerns does not apply to the WebCrypto API, which is now reasonably well supported.

For an offline app, you must still design and implement a secure keystore.

Aside: If you are using Node.js, use the builtin crypto API.

Native-Javascript Cryptography (pre-WebCrypto)

I presume the primary concern is someone with physical access to the computer reading the localStorage for your site, and you want cryptography to help prevent that access.

If someone has physical access you are also open to attacks other and worse than reading. These include (but are not limited to): keyloggers, offline script modification, local script injection, browser cache poisoning, and DNS redirects. Those attacks only work if the user uses the machine after it has been compromised. Nevertheless, physical access in such a scenario means you have bigger problems.

So keep in mind that the limited scenario where local crypto is valuable would be if the machine is stolen.

There are libraries that do implement the desired functionality, e.g. Stanford Javascript Crypto Library. There are inherent weaknesses, though (as referred to in the link from @ircmaxell’s answer):

  1. Lack of entropy / random number generation;
  2. Lack of a secure keystore i.e. the private key must be password-protected if stored locally, or stored on the server (which bars offline access);
  3. Lack of secure-erase;
  4. Lack of timing characteristics.

Each of these weaknesses corresponds with a category of cryptographic compromise. In other words, while you may have “crypto” by name, it will be well below the rigour one aspires to in practice.

All that being said, the actuarial assessment is not as trivial as “Javascript crypto is weak, do not use it”. This is not an endorsement, strictly a caveat and it requires you to completely understand the exposure of the above weaknesses, the frequency and cost of the vectors you face, and your capacity for mitigation or insurance in the event of failure: Javascript crypto, in spite of its weaknesses, may reduce your exposure but only against thieves with limited technical capacity. However, you should presume Javascript crypto has no value against a determined and capable attacker who is targeting that information. Some would consider it misleading to call the data “encrypted” when so many weaknesses are known to be inherent to the implementation. In other words, you can marginally decrease your technical exposure but you increase your financial exposure from disclosure. Each situation is different, of course – and the analysis of reducing the technical exposure to financial exposure is non-trivial. Here is an illustrative analogy: Some banks require weak passwords, in spite of the inherent risk, because their exposure to losses from weak passwords is less than the end-user costs of supporting strong passwords.

🔥 If you read the last paragraph and thought “Some guy on the Internet named Brian says I can use Javascript crypto”, do not use Javascript crypto.

For the use case described in the question it would seem to make more sense for users to encrypt their local partition or home directory and use a strong password. That type of security is generally well tested, widely trusted, and commonly available.

More Related Contents:

  1. Local Storage vs Cookies
  2. What is the difference between localStorage, sessionStorage, session and cookies?
  3. Is either GET or POST more secure than the other?
  4. How to allow http content within an iframe on a https site [duplicate]
  5. Cross Domain Form POSTing
  6. When is localStorage cleared?
  7. Is it possible to put binary image data into html markup and then get the image displayed as usual in any browser?
  8. access iframe content from a chrome’s extension content script
  9. How to prevent a browser from storing passwords
  10. Why are iframes considered dangerous and a security risk?
  11. HTML5 localStorage security
  12. Disabling Safari autofill on usernames and passwords
  13. What happens when localStorage is full?
  14. HTML5 localStorage size limit for subdomains
  15. Open a direct file on the hard drive from firefox (file:///)
  16. Browser Canvas CORS Support for Cross Domain Loaded Image Manipulation
  17. How is HTML5 WebStorage data physically stored?
  18. Is any way that is safe to display videos in a browser
  19. Disabling Chrome Autofill
  20. SVG drop shadow using css3
  21. Switching the order of block elements with CSS [duplicate]
  22. What is the HTML tabindex attribute?
  23. :nth-child(even/odd) selector with class [duplicate]
  24. Auto Resize Image in CSS FlexBox Layout and keeping Aspect Ratio?
  25. What is the correct use of schema.org SiteNavigationElement?
  26. How can I control the width of a label tag?
  27. Filter Extensions in HTML form upload [duplicate]
  28. iPad layout scales up when rotating from portrait to landscape
  29. How to make input autofocus in internet explorer?
  30. Image center align vertically and horizontally [duplicate]

Leave a Comment