What is the current state of Android 6+ encryption on mobile devices? How secure/useful is it really? And how does it work in practice?
1. When I have first booted the device, did Android 6 automatically encrypt the internal drive with my Lockscreen password?
2. What was being encrypted - the full internal SD or just (which) parts?
3. Will the internal (or external, if separately selected) SD card continuously encrypt new /added data?
4. When I change my Locksreen password, will all SD cards be re-encrypted with the new password or do I have to unencrypt(external) and wipe all and re-install (internal) SD cards?
5. How save are the data on a running vs. a shut down device compared to a True-/Veracrypt encrypted PC, assuming same passphrase strength (20+ characters)?
6. What are the latest known (hardware/processor-, software related) vulnerabilities of Android 6+ and Qualcomm and Exynos processors (KeyMaster extraction / Trustzone problems etc.) in terms of encryption?
7. Are there 3rd party full disc encryption apps available like Truescrypt without vulnerabilities?
8. Are there 3rd party file/folder encryption apps available (for rooted or unrooted devices) without vulnerabilities and can I encrypt a complete external SD card with or all e-mails, contact data and calendar items on the phone with such a software easily /automatically, especially if system apps (calendar, contacts..) can’t be moved to the external SD?
Thanks for all comments!
Alistair
1. When I have first booted the device, did Android 6 automatically encrypt the internal drive with my Lockscreen password?
2. What was being encrypted - the full internal SD or just (which) parts?
3. Will the internal (or external, if separately selected) SD card continuously encrypt new /added data?
4. When I change my Locksreen password, will all SD cards be re-encrypted with the new password or do I have to unencrypt(external) and wipe all and re-install (internal) SD cards?
5. How save are the data on a running vs. a shut down device compared to a True-/Veracrypt encrypted PC, assuming same passphrase strength (20+ characters)?
6. What are the latest known (hardware/processor-, software related) vulnerabilities of Android 6+ and Qualcomm and Exynos processors (KeyMaster extraction / Trustzone problems etc.) in terms of encryption?
7. Are there 3rd party full disc encryption apps available like Truescrypt without vulnerabilities?
8. Are there 3rd party file/folder encryption apps available (for rooted or unrooted devices) without vulnerabilities and can I encrypt a complete external SD card with or all e-mails, contact data and calendar items on the phone with such a software easily /automatically, especially if system apps (calendar, contacts..) can’t be moved to the external SD?
Thanks for all comments!
Alistair
Facebook
Twitter
Instagram