.@dangoodin001 In regards to http://arstechnica.com/security/2016/07/androids-full-disk-encryption-just-got-much-weaker-heres-why/ …, it's only the OEM / OS vendor with the signing keys. Google only has those for Nexus.
-
-
Replying to @CopperheadOS
.
@dangoodin001 There's a widespread misunderstanding that Google is the OS vendor for other Android devices. They lack keys AND sources.1 reply 1 retweet 3 likes -
Replying to @CopperheadOS
.
@dangoodin001 There's one party with the keys: the OEM. It's not different than Apple. Apple can similarly flash Secure Enclave firmware.1 reply 2 retweets 4 likes -
Replying to @CopperheadOS
.
@dangoodin001 Secure Enclave is not only a piece of hardware. Apple can still provide what the FBI demanded with newer hardware too...2 replies 0 retweets 2 likes -
Replying to @CopperheadOS
.
@dangoodin001 For iPhone involved in the FBI case there was also no Secure Enclave. The TEE model is comparable to SE, not that weaker one.2 replies 0 retweets 0 likes -
Replying to @CopperheadOS @dangoodin001
guy just used a software-only exploit chain to recover a key described as "hardware-bound." sounds diff to me.
1 reply 0 retweets 1 like -
Android made a mistake by deriving FDE based off the SHK key and then storing it in software. Fundamental diff.
2 replies 0 retweets 3 likes -
As far as I understand it, you even saw the risk of that approach and changed it in Copperhead, right?
1 reply 0 retweets 1 like -
Replying to @dguido @dangoodin001
CopperheadOS allows and encourages using a separate disk encryption passphrase instead of relying on obfuscation.
1 reply 0 retweets 1 like -
Since the TEE/SE stuff is exactly that: obfuscation with a lot more sophistication assumed than it has in reality.
1 reply 0 retweets 0 likes
you're dancing around the issue. Apple UID key is kept in hardware. Android FDE kept in software.
-
-
Apple's interface to the SEP which brokers UID key is simplified, unlike QSEE etc which gets 0day dropped on it
0 replies 0 retweets 0 likesThanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.