FYI - Graphene OS had biometrics with pin
-
-
-
Even with this, biometrics could be construed as proof that it is your phone, whereas just a password or pin still has some degree of deniability
-
Sorry. Tried to make the title short and concise. Maybe wasn't very clear. Lol
-
True. I didn't really consider the connection and more of the security side. I'm sure it differs but do you know if proof of ownership make a difference if they catch you with it in possession in the first place?
-
Same here. Although I have no real reason with my threat level. But I could see how it could be relevant for some people. I also liked the idea because regular people could potentially use your thumb print when sleeping or something so this stops that Initial unlock.
-
IANAL, but if used as a burner phone with nothing identifiable on the device itself, you could probably claim you found it on the ground somewhere. You wont get the phone back most likely but that might be better than the alternative
-
I use biometrics for unlock too. If you click "Lockdown" in the power menu or just hold down the power button until your phone restarts (it should vibrate, so you can even do this while it's still in your pocket), it requires the PIN again in order to be able to unlock it.
-
Makes sense. Also wasn't aware of "IANAL" and was hesitant to google but got it. Thanks lol
-
Oh nice. Do you know if the lockdown option encrypts the phone?
From what I read, I believe on initial boot up, the phone is encrypted before first unlock but no longer after.
-
Ha, I found this the other day and thought it was neat... And turned it off after 30 minutes.
-
This guy anals.
-
I was reading somewhere Android is not encrypting the storage whit lockdown, only biometrics are disabled.
-
I need to use pattern after restart. I can restart my phone pretty quickly if needed.
-
No apologies! Not complaining
-
Its always encrypted, just that the keys are in RAM when it runs.
In case of graphene though you can have a distress pin that wipes the encryption keys, making the phones content irrecoverable.
-
Yes, but that requires you to have of it. If it's been snatched out of your hand, it's too late for that.
-
-
Related:
Download Wasted (https://f-droid.org/en/packages/me.lucky.wasted/) - You can set your phone to auto-wipe after X amount of time without being unlocked, and also various other triggers for wipe, like creating a fake "Signal" or "Telegram" icons on your homescreen that would trigger a wipe if tapped, or a fake "Airplane mode" tile that would trigger a wipe. Very useful stuff. (Might wanna learn the laws in your jurisdiction tho, could get you in trouble.
There's also Duress (https://f-droid.org/en/packages/me.lucky.duress/) which doesn't work on my Samsung, but it worked on a Motorola that I once has. It sets up either a fake pin (aka: duress pin), and the duress pin can also be to just enter X characters, where X is at least 2 chracters more than your real password (example: if your pin is "2025", all you have to say is any string of 6 characters or more like "123456" and the wipe will happen, very useful since you probably won't remember a specific duress pin under stress)
-
GOS has a duress pin feature fyi.
