Sure, but you're not taking into account the exploitation method here. Decrypt at the point of use is no help in a system that's completely compromised as is being discussed. The attacker alreay has admin level access to the memory and therefore the entire system. They already have the decryption keys.
It's just performative security at that point - it's not adding any barriers.
(, Fri 8 May 2026, 11:23, Reply)
All those non privileged exploits, rambleed, format string attacks, spectre, meltdown, stack overflows etc don't exist, so a password manager that loads all your passwords in plaintext on launch is fine, not something that even if the system was compromised you would expect it to keep them relatively secure and not serve it up on a platter?
(, Sun 10 May 2026, 1:21, Reply)