You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The addition your App provides to the Cryptfs Password Manager is incredible. Your App is one of the first I install on a fresh Android, it's a must have, if you use encryption.
I recently thought about how this concept could be improved even more. Maybe you are familiar with the Kali Linux LUKS Nuke feature. https://www.kali.org/tutorials/emergency-self-destruction-luks-kali/
In short it lets you set a nuke-password which purges your keys. So if someone is forcing you to decrypt your storage you can safe your data by entering the nuke-password instead of the decrypt-password.
I'm not a developer but I think it might be possible on Android too. Cryptsetup also uses dm-crypt. But other than LUKS Androids encryption only allows one single key in its crypto footer. But it seems you need 2 keyslots, one for the real and one for the nuke key.
I don't know for shure, let me know what you think.
The text was updated successfully, but these errors were encountered:
@killathe this is a VERY cool suggestion but unfortunately @licaon-kter is right... It would need a custom ROM or a patch to the built-in cryptsetup utility. If you are a developer you can create a PR. Otherwise I would create a PR
Update: It wouldn't need a custom ROM. The app could make a backup of the system partition and patch the binary afterwards.
There ARE official ways to patch the binary we are talking about, but I don't know how to accomplish this on Android... Research time! xD
The addition your App provides to the Cryptfs Password Manager is incredible. Your App is one of the first I install on a fresh Android, it's a must have, if you use encryption.
I recently thought about how this concept could be improved even more. Maybe you are familiar with the Kali Linux LUKS Nuke feature. https://www.kali.org/tutorials/emergency-self-destruction-luks-kali/
In short it lets you set a nuke-password which purges your keys. So if someone is forcing you to decrypt your storage you can safe your data by entering the nuke-password instead of the decrypt-password.
I'm not a developer but I think it might be possible on Android too. Cryptsetup also uses dm-crypt. But other than LUKS Androids encryption only allows one single key in its crypto footer. But it seems you need 2 keyslots, one for the real and one for the nuke key.
I don't know for shure, let me know what you think.
The text was updated successfully, but these errors were encountered: