How secure is File Vault 2 on Mac, given the fact that resetting/finding out someone's login password is not impossible?

macos security password filevault encryption

There are ways to break File Vault 2 encryption: https://www.blackbagtech.com/blog/2017/07/13/macquisition-best-just-got-better/

Since you can reset a password when it's locked, I wonder in practice how secure is FileVault in the real world.

Furthermore, even if someone like the aforementioned Macquisition isn't used, can't someone just login to your user account?


Solution 1:

File Vault won't protect you from someone with the means to grab your laptop when you have it unlocked and image it. Neither will it prevent someone from coercing your password from you or just snooping it from reuse / yellow post it notes, etc... https://xkcd.com/538/

https://xkcd.com/538/

FileVault is designed to prevent trivial surreptitious attacks:

  • booting to single user mode to add a new admin account
  • looking at your data (or copying unencrypted files) by booting to another OS that someone brings to your Mac

Filevault is good protection from people that can't or won't steal your password to unlock your drive. In a nutshell, it enforces authorization to decrypt your data, apps and OS with a password of your choosing.

  • https://support.apple.com/en-us/HT204837

Related

Tuxera NTFS and High Sierra
Can I take a screenshot on one Mac and instantly paste it into a document on another Mac or iPad?
Will Face ID work upside down?
What happens to 32-bit apps on a device after an iOS 11 update?
How to check if exists any duplicate in Java 8 Streams?
How to enroll developer.apple program for multiple years
Sierra: can't change Magic Mouse scrolling speed
Can I use Siri on my iPhone without having to speak?
How do I stop my iPhone camera automatically recording my location when I take photos?
Unable to complete first backup to iCloud due to lack of space
What happens if you run dd without any argument?
Save Mac Terminal session to text file