Zola 2026-06-12T00:00:00+00:00 https://thde.io/tags/ssh/atom.xml 2026-06-12T00:00:00+00:00 2026-06-12T00:00:00+00:00 Unknown https://thde.io/blog/secure-enclave-ssh/ <p><a rel="external" href="https://github.com/maxgoedjen/secretive">Secretive</a> has been the go-to app for storing SSH keys in the Secure Enclave — keeping private key material inside the chip, protected by Touch ID, never exposed to the OS. macOS 26 makes it unnecessary: the same protection is now built in via <code>sc_auth</code> and <code>/usr/lib/ssh-keychain.dylib</code>.</p> <p>See <a rel="external" href="https://algustionesa.com/native-secure-enclave-ssh-keys-the-macos-guide/">Native Secure Enclave SSH Keys — the macOS guide</a> for the full setup, or the <a rel="external" href="https://gist.github.com/arianvp/5f59f1783e3eaf1a2d4cd8e952bb4acf">quick gist</a> for the short version. Apple’s documentation on <a rel="external" href="https://developer.apple.com/documentation/security/protecting-keys-with-the-secure-enclave">Protecting keys with the Secure Enclave</a> covers the underlying API.</p>