.@dangoodin001 In regards to http://arstechnica.com/security/2016/07/androids-full-disk-encryption-just-got-much-weaker-heres-why/ …, it's only the OEM / OS vendor with the signing keys. Google only has those for Nexus.
you have to trust more than 1 company with device security (yes), FDE key is stored in software (yes). LGTM.
-
-
Google doesn't have the keys. Qualcomm doesn't have the keys. There is no second party able to flash firmware or OS.
-
As I said, people frequently assume that Google is in control. They're not. It's the OEM. This is news to many.
- 14 more replies
New conversation -
-
-
People in the Android ecosystem frequently assume all subpoenas end up at Google. Not true, this helps remind.
-
If the device is actually turned of, there's nothing of value that Google could provide them in terms of code signing.
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.