I’m not super knowledgeable about encryption and have some questions about how Fission deals with it:
- Why does Fission encrypt in the browser? I have assumed that browser storage is ‘protected’ by origin security measures but perhaps this is naive: are you able to describe any of the security risks of unencrypted data in IndexedDB?
- If the app works offline, wouldn’t the key need to be stored in the same place as the encrypted data?
- Are you able to talk about how encrypting everything impacts performance?