Conversation

Hector Martin
@marcan42
Thread about numeric passcode strength on iPhones. And *this* is why I consider my rooted Android phone to be more secure than iPhones under a whole category of attack scenarios. Because I can use separate 25-character full ASCII *startup* password and an 8-digit *unlock* code.
Quote Tweet
Matthew Green
@matthew_d_green
Guide to iOS estimated passcode cracking times (assumes random decimal passcode + an exploit that breaks SEP throttling): 4 digits: ~13min worst (~6.5avg) 6 digits: ~22.2hrs worst (~11.1avg) 8 digits: ~92.5days worst (~46avg) 10 digits: ~9259days worst (~4629avg)
Show this thread
10
55
Hector Martin
@marcan42
Sure, you can try to attack my phone from a powered-but-locked state, but if you screw up and it reboots, or if you attempt any boot chain attacks, or if the battery runs out, you are *not* getting in. Period.
1
7
Hector Martin
@marcan42
I don't know why nobody offers this option of split FDE/unlock codes by default (neither iPhones nor stock Android). It's such a massive no-brainer to increase security to basically "unbreakable" under an entire class of practical attack scenarios.
3
18
This Tweet was deleted by the Tweet author. Learn more
Daniel Micay
@DanielMicay
Replying to
@brinlystorm
@PaulM
and
@marcan42
Reimplementing it in a better way is planned, but it needs to be done differently due to per-profile encryption keys. The plan is to build it as a 2nd factor on top of the secondary unlock mechanism for biometric authentication.
github.com
add support for requiring an extra factor (PIN, passphrase or pattern) with fingerprint unlock ·...
There should be the option to add a second factor to fingerprint unlock. This would allow using a strong main passphrase paired with a weaker passphrase/PIN usable only via fingerprint unlock when ...
1
5