Ask Android@lemdro.idEnglish · 1 month ago

Encryption while unattended: Lockdown Mode vs Off?

fmstrat@lemmy.nowsci.com to

Ask Android@lemdro.idEnglish · 1 month ago

So I have a debate in my head right now about how I should handle devices stored unattended in vehicles. The criteria:

Devices have new versions of Android
Pass phrases or many-digit pins are used
Biometric login is set up (but can’t be used in Lockdown Mode)
Have Bitwarden installed with biometric auth for the vault
Has SSH keys on the device

I’m not worried about nation state attacks, but am considering the vector of a tech savy thief, and want to keep SSH keys and other device data secure. Assume they cannot be stored in a vault.

Is storing the phones on but in Lockdown mode enough, or should I turn them off completely? Off would be super annoying to wait for boot every time, but I’m not totally sure how KEK works for an encrypted device with biometrics set up but in Lockdown Mode where they are disabled.

Chat

fmstrat@lemmy.nowsci.comOP
link
fedilink
English
arrow-up
3·
1 month ago
Thank you, this is what I expected, but wanted to be sure. I do have rotation plans in place, so covered there, too.

Ask Android@lemdro.id

askandroid@lemdro.id

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !askandroid@lemdro.id

A place to ask your questions and seek help related to your Android device and the Android ecosystem.

Whether you’re looking for app recommendations, phone buying advice, or want to explore rooting and tutorials, this is the place for you!

Rules

Be descriptive: Help us help you by providing as many details as you can.
Be patient: You’re getting free help from Internet strangers, so you may have to wait for an answer.
Be helpful: If someone asks you for more information, tell us what you can. If someone asks you for a screenshot, please provide one!
Be nice: Treat others with respect, even if you don’t agree with their advice. Accordingly, you should expect others to be nice to you as well. Report intentionally rude answers.
No piracy: Sharing or discussing pirated content is strictly prohibited. Do not ask others for a paid app or about how to acquire one.
No affiliate/marketing links: Posting affiliate links is not allowed.
No URL shorteners: These can hide the true location of the page and lead people to malicious places.
No lockscreen bypasses: Please do not comment, link, or assist with bypassing lock screens or factory reset protection.
No cross-posting: Please take the time to make a proper post instead of cross-posting.

Other Communities

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

3 users / day
8 users / week
40 users / month
598 users / 6 months
9 local subscribers
2.29K subscribers
365 Posts
2.37K Comments
Modlog