Comment on Android phones will soon reboot if they’re locked for a few days
DrBob@lemmy.ca 15 hours ago
I’m not a phone person. What benefit does this provide?
This podcast goes into the reasons that rebooting a locked phone can improve security.
[The 404 Media Podcast] How Apple is Locking Out Cops #the404MediaPodcast podcastaddict.com/…/185990070 via @PodcastAddict
My take is, it’s harder to unlock/hack a phone when it is in the locked state after booting up. This state is somehow different than the booted locked state.
Why, is above my understanding.
Basically, the tools that LE uses to unlock devices uses exploits that require the device to be in what’s called an AFU (after first unlock) state. The data on the device is encrypted prior to that first unlock after you boot. If the device is in a BFU state (before first unlock) Cellebrite/Greykey (by far the primary tools used in this space) basically hit a wall.
Elsewhere in the thread they explain because decryption takes time, they don’t cycle it every time you lock your phone by default. Not sure if there’s more to it.
The time needed for key derivation aka key stretching may be a factor, but also in the BFU state I think apps don’t run and you don’t get notifications, since most of the files are still locked
Thank you for elaborating.
It makes it harder for law enforcement or others to access the phone without knowing the pin
And from my reading, helps secure against a situation where an police officer (AKA attacker in the US apparently…) coerces you to unlock the phone (or perhaps even just takes it off you in a locked, but active state), and stores it in a faraday bag with a charger. They do that to keep it ‘alive’ so their experts can break in - a dead-mans reboot can help circumvent even that (as it will just reboot and restore itself to an encrypted rest state, which is much harder to attack)
If you set it up with a password it makes it harder for people who shouldn’t have access to it to read your stuff
truxnell@infosec.pub 15 hours ago
After a reboot all the data is encrypted and needs a pin/fingerprint to unlock. So if it’s stolen (or feds get it) a planned reboot resets it to a highly secure state that is much more difficult to hack into than when it’s just locked from timeout.
n2burns@lemmy.ca 14 hours ago
Just to clarify, it needs a PIN/password to unlock after reboot. Biometrics like fingerprint aren’t available until the device has been decrypted.
truxnell@infosec.pub 5 hours ago
Thanks for the clarification, I forgot that (somehow)
Sibshops@lemm.ee 14 hours ago
Oh, this is actually a useful feature, then.
truxnell@infosec.pub 5 hours ago
Yeah, seems like its a move to follow apple after custom ROMS offering it as a security feature (Im on GrapheneOS and had it set for a while)
lol@discuss.tchncs.de 12 hours ago
Why is a reboot necessary for that? Is it not possible to enter the same encrypted state the phone is in after a reboot without actually rebooting?
Darkassassin07@lemmy.ca 12 hours ago
Much of the data on your phone, including critical information that’s required to run the operating system and make the device function, is fully encrypted when the device is off/rebooted.
While in this locked down state, nothing can run. You don’t receive notifications, applications can’t run in the background, even just accessing the device yourself is slow as you have to wait for the whole system to decrypt and start up.
When you unlock the device for the first time; much of that data is decrypted so that it can be used, and the keys required to unlock the rest of the data get stored in memory where they can be quickly accessed and used. This also makes the device more vulnerable to attacks.
There’s always a trade off between convenience and security. The more secure a system, the less convenient it is to use.
lol@discuss.tchncs.de 7 hours ago
I’m generally aware of all that, but I don’t see how it answers the question. Why can’t you just stop all app processes, unmount the relevant partition(s), clear any memory containing cryptographic keys etc. but not actually reboot?
Rebooting just seems like a very roundabout, slow and inefficient way to get back to that initial state you describe.