Conversation

Does

hold the decryption keys in RAM after it's locked? Source: securephones.io/#Chx1.p4 particularly the point about "Limited benefit of encryption..." Can this be fixed or is it an architectural problem with Android? News story:

arstechnica.com

How law enforcement gets around your smartphone’s encryption

Openings provided by iOS and Android security are there for those with the right tools.

Replying to

and

See grapheneos.org/faq#encryption. It's not an architectural limitation of Android. It's a limitation of the device being able to function when locked. The end session feature can be used to logout of a secondary profile and purge the keys from memory and hardware.

grapheneos.org

GrapheneOS Frequently Asked Questions

Answers to frequently asked questions about GrapheneOS.

Replying to

and

Filesystem-based encryption allows Android to provide per-user-profile encryption keys. That enables support for ending the session of profiles, at least for secondary profiles. Ending the owner profile session without reboot would be possible but it'd basically be a soft reboot.

2:10 PM · Jan 25, 2021Twitter Web App

Replying to

and

Ending the owner profile session would have to end all other sessions, soft reboot the OS and then purge the keys. It's semantically the same as rebooting, but it would be non-trivial to implement correctly. End session for secondary profiles is far more useful and works already.

Replying to

and

"In particular, Android provides no equivalent of Apple’s Complete Protection (CP) encryption class, which evicts decryption keys from memory shortly after the phone is locked." is not true. This functionality is provided via Android's hardware-backed keystore API.

Show replies