Conversation

GitHub - mollyim/mollyim-android: A fork of Signal for Android with passphrase lock

This covers the baseline disk encryption. Apps can use the hardware keystore API to provide another layer of encryption with options like setting keys to be only available when unlocked. Can also be mixed with their own encryption. See github.com/mollyim/mollyi for an example.

github.com

A fork of Signal for Android with passphrase lock. Contribute to mollyim/mollyim-android development by creating an account on GitHub.

Before the Titan M introduced with the Pixel 3, the Pixel 2 used an off-the-shelf NXP security chip to implement Weaver. The implementation is open source: android.googlesource.com/platform/exter It would be easy for other devices to implement. However, it's not mandatory so they don't bother.

android-developers.googleblog.com

The NXP security chip on the Pixel 2 and the Titan M on later devices also use insider attack resistance: android-developers.googleblog.com/2018/05/inside An attacker with the signing keys for the secure element firmware and the OS cannot update the firmware without authenticating as the owner profile.

Insider Attack Resistance

Our smart devices, such as mobile phones and tablets, contain a wealth of important personal information that needs to be kept safe. Google is constantly trying to find new and better ways protect...

Weaver is how a strong level of security is provided for the vast majority of users not using a strong passphrase as their lock method. A random 6-digit PIN becomes quite hard to bypass when dealing with a secure element with insider attack resistance allowing 1 attempt per day.