Apple is already using the secure enclave for key derivation, PIN/password rate limiting etc. (that’s what it’s for), but my point is that there’s currently a gap in that you can often not really know if you are actually talking to the secure enclave or OS-level malware.
How? The secure enclave doesn't have any trusted input/output capabilities other than the power button double click and biometrics. The PIN isn't entered via these.
There’s a thing which I know very little about personally but have hearsay of its existence where it rips control from XNU and takes over touch input for this
Apple is already using the secure enclave for key derivation, PIN/password rate limiting etc. (that’s what it’s for), but my point is that there’s currently a gap in that you can often not really know if you are actually talking to the secure enclave or OS-level malware.