I hope this gets added to Android.
this post was submitted on 22 Nov 2024
137 points (97.9% liked)
News
35821 readers
2169 users here now
Welcome to the News community!
Rules:
1. Be civil
Attack the argument, not the person. No racism/sexism/bigotry. Good faith argumentation only. This includes accusing another user of being a bot or paid actor. Trolling is uncivil and is grounds for removal and/or a community ban. Do not respond to rule-breaking content; report it and move on.
2. All posts should contain a source (url) that is as reliable and unbiased as possible and must only contain one link.
Obvious biased sources will be removed at the mods’ discretion. Supporting links can be added in comments or posted separately but not to the post body. Sources may be checked for reliability using Wikipedia, MBFC, AdFontes, GroundNews, etc.
3. No bots, spam or self-promotion.
Only approved bots, which follow the guidelines for bots set by the instance, are allowed.
4. Post titles should be the same as the article used as source. Clickbait titles may be removed.
Posts which titles don’t match the source may be removed. If the site changed their headline, we may ask you to update the post title. Clickbait titles use hyperbolic language and do not accurately describe the article content. When necessary, post titles may be edited, clearly marked with [brackets], but may never be used to editorialize or comment on the content.
5. Only recent news is allowed.
Posts must be news from the most recent 30 days.
6. All posts must be news articles.
No opinion pieces, Listicles, editorials, videos, blogs, press releases, or celebrity gossip will be allowed. All posts will be judged on a case-by-case basis. Mods may use discretion to pre-approve videos or press releases from highly credible sources that provide unique, newsworthy content not available or possible in another format.
7. No duplicate posts.
If an article has already been posted, it will be removed. Different articles reporting on the same subject are permitted. If the post that matches your post is very old, we refer you to rule 5.
8. Misinformation is prohibited.
Misinformation / propaganda is strictly prohibited. Any comment or post containing or linking to misinformation will be removed. If you feel that your post has been removed in error, credible sources must be provided.
9. No link shorteners or news aggregators.
All posts must link to original article sources. You may include archival links in the post description. News aggregators such as Yahoo, Google, Hacker News, etc. should be avoided in favor of the original source link. Newswire services such as AP, Reuters, or AFP, are frequently republished and may be shared from other credible sources.
10. Don't copy entire article in your post body
For copyright reasons, you are not allowed to copy an entire article into your post body. This is an instance wide rule, that is strictly enforced in this community.
founded 2 years ago
MODERATORS
Its in GrapheneOS(an android custom ROM) if you're that way inclined.
Sadly I can't, need to keep the stock OS for work.
Ah, I don't use my personal phone for work stuff or my work phone for personal stuff. GrapheneOS also only supports Pixel phones.
If you use your personal phone for work you can do with it whatever the hell you want, it's your phone. If work requires you to do something they can give you a phone in which tondo that
My primary phone is a corporate phone, so no.
I use an eSIM to have my personal phone number and the work stuff is in a container.
Came here to say this
GrapheneOS is not a custom ROM
I get that it's not actually ROM, but this is the normal term used. For example, https://en.wikipedia.org/wiki/List_of_custom_Android_distributions
This is a list of Android distributions, Android-based operating systems (OS) commonly referred to as Custom ROMs or Android ROMs, forked from the Android Open Source Project (AOSP) without Google Play Services included officially in some or all markets, yet maintained independent coverage in notable Android-related sources.
Emphasis mine.
Android is already disabling fingerprint reader every 72 hours. So what's the difference?
The encryption key of the device storage is kept in memory while in AFU state for practical reasons, you don't want to wait for the encryption key to be generated everytime you unlock the device, then wait for apps to restart and sync their data.
A reboot will discard that key from memory and return the phone back in BFU state, making it much more difficult to extract data from a device.
https://blogs.dsu.edu/digforce/2023/08/23/bfu-and-afu-lock-states/
Some do. Enable "auto restart" if your phone has it.
I believe this option just came to my Pixel 7 a few weeks back.
Wait I thought we were supposed to hate on iphones here.
Yeah, I debated whether to post it or not. = )
iPhones suck. This is still an objective improvement to them and currently an advantage over Android. Hatred and blind hatred aren't the same.
GrapheneOS supports it.
That's super cool! I guess I should've expected that. Still unfortunately means you need to be a Pixel owner and to have installed a non-default OS, which is an extreme minority of Android users – compared to iOS 18.1 blanketing every 12th-or-later-gen iPhone.
Yeah... I hope that it becomes a standard part of Android one day.
Last week it was theorized that iOS 18 would reboot after 24 hours if it lost connection from the internet. That would be even better, since it would fuck people trying to work around FindMy.
How do you mean trying to work around FindMy? Like phone thieves?
Thieves, authorities, crazy ex, anyone.
FindMy will allow you to remotely secure or wipe the device. But the device needs to be online to get that request to lock or wipe from iCloud.
Surely the user could just take out the SIM card and that would prevent it from ever connecting to the internet?
Sure it could connect over Wi-Fi still but the chances of it being next to a network it has connected to before are very slim.
What SIM card?
Yea, eSIM is starting to take over the contemporary phone market.
The last 3 generations of iPhone released in the US do not have physical SIM card slots at all.
Yeah, and a bunch of other manufacturers were quick to follow.
I’m still on the fence of whether or not this is a good thing. In this scenario, it’s a pro. Cops or crooks can’t remove a SIM if there is no physical SIM.
That’s my point. People try to keep stolen or confiscated phones from reaching the cloud. Many have proposed a faster auto-reboot for phones that aren’t online. Maybe reducing it from 72 hours to 12 or 24.
Hopefully they've implemented it in a way that the phone can still get wiped before initial unlock.
Yeah, it will wipe if it’s locked. It wipes as soon as it gets the request from cloud. So immediately if it’s online, or if it’s unable to reach the internet, it wipes once it connects to a cellular or wifi network.
I don't get it... Why is rebooting a locked phone more secure?
Every time the phone reboots, it disables biometric unlocking until the correct pin is entered.
Most hacking tools that police have access to take advantage of the weaker security found in the biometric unlock mode.
By randomly restarting, the phone’s storage stays fully encrypted until the correct pin or passcode is entered, which is far more secure as it takes either a brute force attack to guess the correct pin, or a court order compelling the person to provide the pin or passcode.
Fun fact, in the United States, a pin or passcode is considered private property, and the police can’t legally force you to provide it without a warrant. However, your face or fingerprints are not considered private property, and they can and have used biometrics to unlock phones without user consent or a warrant before.
If you ever get stopped by the cops, make sure to reboot your phone so they have a harder time finding incriminating evidence.
You don’t have to reboot it. You just have to click the main side button several times (10?). Which you can do by feel.
You just have to click the main side button several times (10?).
5 times locks it.
This disables biometrics, but doesn’t delete the decryption key in memory. This is sufficient to prevent being compelled to unlock with biometrics, but with the decryption key in memory, it is still possible to access data via an exploit. A full reboot deletes the decryption key until the user enters their pin.