this post was submitted on 16 Oct 2024
80 points (97.6% liked)

Privacy

1132 readers
252 users here now

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 1 year ago
MODERATORS
Ategon@programming.dev
danielintempesta@programming.dev
80
Police want the password to your phone (reason.com)
submitted 16 hours ago by throws_lemy@lemmy.nz to c/privacy@programming.dev
30 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] AsudoxDev@programming.dev 0 points 12 hours ago* (last edited 12 hours ago) (1 children)

I never said anything about the phone not being encrypted by default. I am talking about the emergency mode iOS devices have.

[–] OfCourseNot@fedia.io 1 points 8 hours ago (1 children)

You literally said 'that doesn't encrypt your storage'. I've read some other comments of yours about it being decrypted after entering a pin or passwords in memory...that's not how it works (again at least in iOS), it's managed by hardware. Basically a chip enters your password for you. So no, an attacker can't access your storage, it's still encrypted, or your password that easily.

[–] AsudoxDev@programming.dev 2 points 8 hours ago* (last edited 8 hours ago)

PSA hitting your power button (5)? times in a row (however many it takes to bring up the SOS screen) on an iPhone will disable biometric login until you’ve entered your password again.

I responded to that with:

That does not encrypt your storage. It simply disables the biometric authentication methods. Which means they can see your stuff if they get into the phone via a exploit.

That emergency mode that is activated by hitting the power button 5 times does not encrypt the storage. It merely disables the biometric authentication methods and possibly other things related to security, but it does not encrypt the storage. The phone stays in the AFU state and therefore the decryption keys are still somewhere in the hardware chip's memory.