Stefan Sperling wrote on Thu, 26 Aug 2021 10:30 +00:00: > And while we are considering read-only vs. read-write access: > Plaintext passwords or not, in my contrived scenario Eve could always > trick Alice into using a different user account by caching a set of > valid credentials which Eve knows. Apart from not caching credentials > at all I don't see a way to prevent this.
That scenario is called an "evil maid attack". I don't think we should try to prevent it. We are not in the business of posting guards to watch over unattended laptops.