Daniel Micay on Twitter: "They could also extend it to provided hardware supported enforcement of the configurable limit on attempts before wiping data, although that wasn't part of the initial implementation for the Pixel 2 security chip. The limit still isn't offered as an option in the stock UI though." / Twitter

Titan security chip functionality: twitter.com/redpig/status/ It provides an alternate hardware keystore (instead of TrustZone) and replaces the Android Verified Boot (AVB) state android.googlesource.com/platform/exter and Weaver (android.googlesource.com/platform/exter) applets for the Pixel 2 security chip.

Quote Tweet

Will Drewry

@redpig

Oct 9, 2018

Replying to @ThomasBertani

Yup - implements AVB state storage, Weaver HAL, and the new Keymaster Strongbox HAL which is accessed with new flags to Keystore. Strongbox impl have a separate batch key for atteststion too (for differentiation from the TEE impl), also Protected Confirmation test-of-presence

Daniel Micay

@DanielMicay

Oct 10, 2018

Weaver was the main use case for the Pixel 2 security chip: hardware-enforced exponentially growing delays for key derivation. It holds random tokens in escrow needed to derive per-profile encryption keys and only provides them when given correct credential-derived auth tokens.

Daniel Micay

@DanielMicay

They could also extend it to provided hardware supported enforcement of the configurable limit on attempts before wiping data, although that wasn't part of the initial implementation for the Pixel 2 security chip. The limit still isn't offered as an option in the stock UI though.

3:32 AM · Oct 10, 2018Twitter Web Client

Conversation