The documents provide never-been-seen insight into the current cat-and-mouse game between forensics companies and phone manufacturers Apple and Google.
  • mac@lemm.eeEnglish
    2·
    5 hours ago

    Has there been any information about how long physical access is needed for these attack methods to extract data?

    I’ve got my auto restart set at 8 hours, in graphene’s mastodon thread, they say 10 minutes is best for highest levels of security. The short time frame given in that thread makes me wonder if these exploits give instant access to data.

  • TechnoFish@lemm.eeEnglish
    19·
    17 hours ago

    One good thing about windows phones was that hardly anyone would have been insane enough to spend resources to develop a forensic tool for it.

    • ERROR: Earth.exe has crashed@lemmy.dbzer0.comEnglish
      20·
      16 hours ago

      Lol, did you see what windows computers do? They literally upload your key to microsoft. Like they aren’t event hiding the fact. If you don’t create a microsoft account to allow for the upload, then they just store the key unencrypted and its effectively like no encryption.

      • lud@lemm.eeEnglish
        1·
        2 hours ago

        That’s because people are stupid enough to never write down their keys and it’s better to have somewhat worse encryption compared to no encryption.

        In an enterprise the recovery keys are most often stored in AD or Entra.