Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons

Social Media

Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons
Search the Site
Popular Searches:
technology Amazon AI
Recent Posts
India Bans Apps Used to Remotely Disable E-Rickshaws
July 3, 2026
The Future of Encryption: Top Post-Quantum Cryptography Solutions for 2026
July 3, 2026
Alibaba Bans Internal Use of Claude AI Over Backdoor Concerns
July 3, 2026
Home/Threats/Google Authenticator Passkeys: A Potential New Attack Surface
Threats

Google Authenticator Passkeys: A Potential New Attack Surface

Key Takeaways Google’s passkey ecosystem, particularly when using Google Password Manager (GPM), relies on a previously undisclosed cloud component at enclave.ua5v[.]com. This cloud...

Jennifer sherman
Jennifer sherman
March 25, 2026 4 Min Read
49 0

Key Takeaways

  • Google’s passkey ecosystem, particularly when using Google Password Manager (GPM), relies on a previously undisclosed cloud component at enclave.ua5v[.]com.
  • This cloud authenticator performs critical cryptographic operations, including generating passkey keys and handling authentication requests, creating a centralized point of trust.
  • Researchers from Unit 42 identified this architecture as a significant, undescribed attack surface, shifting sensitive key material to a remote enclave.
  • The design means passkey private keys are never stored directly on a device in usable form but are decrypted and used in the cloud, raising concerns about cloud-side logic compromise.
  • Users are advised to monitor Google accounts for unusual activity and consider hardware security keys for critical accounts.

Google’s Passkeys: A Hidden Cloud Component Unveils New Attack Surfaces

The promise of passwordless authentication has long been the elimination of account takeovers by replacing traditional passwords with cryptographically secure keys tied to physical devices. This vision aimed to render compromised credentials obsolete for unauthorized account access.

Table Of Content

  • Key Takeaways
  • Google’s Passkeys: A Hidden Cloud Component Unveils New Attack Surfaces
  • The Undisclosed Cloud Authenticator
  • Device Onboarding and State Management
  • Inside the Cloud Authenticator’s Authentication Flow
  • What You Should Do

However, an in-depth analysis of Google’s passkey implementation reveals a more intricate system than the “passwordless” ideal suggests. This complexity potentially introduces novel attack paths that have not been publicly acknowledged or thoroughly discussed.

The Undisclosed Cloud Authenticator

Beneath every passkey login facilitated by Google Password Manager (GPM), a clandestine cloud component is actively executing sensitive cryptographic functions. This component, operating silently, may be inadvertently creating new vulnerabilities within the passkey ecosystem.

Contrary to the model of a conventional hardware authenticator tied to a single device, Google’s passkey system functions differently. When a Chrome user logs into a service using a passkey backed by GPM, the browser surreptitiously establishes a connection to a remote service hosted at enclave.ua5v[.]com.

This domain acts as a cloud-based authenticator, responsible for generating passkey keys, processing authentication requests, and maintaining credential synchronization across all of a user’s enrolled devices. As of January 2026, the critical role of this domain in passkey authentication remained largely undocumented, despite its widespread operation.

Researchers at Unit 42 uncovered this cloud-centric architecture during a comprehensive security review of Google’s passkey implementation. Their approach involved adopting an attacker’s mindset, focusing on the practical aspects of passkey storage, movement between devices, and the location of sensitive key material, rather than merely the theoretical soundness of the FIDO protocol.

This shift in perspective exposed an unexpectedly broad attack surface, one that existing FIDO and W3C technical documentation does not adequately detail or address.

Device Onboarding and State Management

The architecture relies on a background device onboarding process that must complete before passkeys can be utilized. During this process, Chrome generates two hardware-backed key pairs—an identity key and a user verification key—using the device’s Trusted Platform Module (TPM). These keys are then registered with the cloud authenticator.

The cloud authenticator stores these public keys, assigns a device-specific wrapping key, and issues a member key pair. This establishes the device as a trusted participant within the user’s security domain. The entire state resulting from this onboarding is saved locally in a file named passkey_enclave_state, located within the Chrome profile directory.

This hybrid model ensures that passkey private keys are never stored directly on a device in a usable format. Instead, they are encrypted with a Security Domain Secret (SDS) managed by the cloud authenticator. Every login requires Chrome to transmit the wrapped SDS back to the cloud, where it is decrypted and used to sign the authentication response on behalf of the device.

This design places significant trust in the cloud component, raising critical questions about the security implications if this cloud-side logic were to become a target for compromise.

Inside the Cloud Authenticator’s Authentication Flow

Communication between Chrome and the cloud authenticator is secured using the Noise Protocol Framework, specifically the Noise_NK_P256_AESGCM_SHA256 handshake variant.

Chrome initiates a WebSocket connection to wss[:]//enclave.ua5v[.]com/enclave, performs a Diffie-Hellman key exchange to establish a shared session key, and subsequently signs every request with a TPM-backed device key.

During a passkey login, Chrome sends a passkeys/assert command, along with the device ID and the wrapped SDS. The cloud authenticator then unwraps the SDS, decrypts the passkey private key, constructs the authentication response, and signs it before returning it to Chrome. The browser then forwards this signed response to the relying party, which verifies the signature to complete the login process.

While this design keeps key material off individual devices, it centralizes cryptographic authority within a remote cloud enclave. Should this enclave be compromised or impersonated, an attacker could potentially generate valid authentication responses for any enrolled user, bypassing traditional device-level security.

What You Should Do

  • Organizations and individuals using synced passkeys via Google Password Manager (GPM) should vigilantly monitor their Google accounts for any unexpected device enrollments.
  • Regularly audit authentication logs for unusual access patterns or suspicious login activities.
  • For privileged or highly sensitive accounts, consider using FIDO2-compliant hardware security keys as an alternative to cloud-synced passkeys, as they offer a more robust, device-centric security model.

Disclaimer: HackersRadar reports on cybersecurity threats and incidents for informational and awareness purposes only. We do not engage in hacking activities, data exfiltration, or the hosting or distribution of stolen or leaked information. All content is based on publicly available sources.

Tags:

AttackSecurity

Share Article

Jennifer sherman

Jennifer sherman

Jennifer is a cybersecurity news reporter covering data breaches, ransomware campaigns, and dark web markets. With a background in incident response, Jennifer provides unique insights into how organizations respond to cyber attacks and the evolving tactics of threat actors. Her reporting has covered major breaches affecting millions of users and has helped organizations understand emerging threats. Jennifer combines technical knowledge with investigative journalism to deliver in-depth coverage of cybersecurity incidents.

Previous Post

FCC bans foreign routers with security flaws

Next Post

Critical ClawHub Vulnerability Lets Attackers Manipulate Skill Rankings

No Comment! Be the first one.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Popular Posts
AI Poisoning Attack Abuses SEO and Hidden HTML to Trick AI Agents
July 3, 2026
Nebula AI Platform Automates Pen Testing to Find Vulnerabilities
July 3, 2026
PureLog Stealer Uses Blogspot and PowerShell to Deliver Malware
July 3, 2026
Top Authors
Marcus Rodriguez
Marcus Rodriguez
Jennifer sherman
Jennifer sherman
Emy Elsamnoudy
Emy Elsamnoudy
Let's Connect
156k
2.25m
285k

Related Posts

Jennifer sherman
By Jennifer sherman
Threats

GlassWorm Attacks macOS via Malicious VS Code…

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Attacks

ClickFix Attack Hides Malicious Code via Stegan Security

January 1, 2026
Sarah simpson
By Sarah simpson
Vulnerabilities

MongoBleed Detector Tool Released to Detect MongoDB Vulnerability(CVE-2025-14847)

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Breaches

Conti Ransomware Gang Leaders & Infrastructure Exposed

January 1, 2026
Hackers News Hackers News
  • [email protected]

Quick Links

  • Contact Us
  • Privacy Policy
  • Terms of service

Categories

Attacks
Breaches
Comparisons
CyberSecurity News
Threats
Vulnerabilities

Let's keep in touch

receive fresh updates and breaking cyber news every day and week!

All Rights Reserved by HackersRadar ©2026

Follow Us