Security: tablet encryption - Nexus 10 Q&A, Help & Troubleshooting

For some reason I haven't ever put any thought into this option before. Do you use it? Does it slow the tablet down? I wanted an option to wipe data after a certain number of failed password attempts and it looks like the only way to do that (sort of) is to encrypt it and then you get an option to lose the encryption key after failed password attempts? Would love some opinions/suggestions. Thanks!
Sent from my Nexus 10 using Tapatalk HD

I'm really curious about this, too. Does anyone have their tablet encrypted? What are the practical effects it has on ROMing?

I believe encryption only slows it down on boot as it decrypt, once it's booted its fine. It just stops people ripping out the flash or making a dump and reading out your data.
Sent from my GT-I9300 using Tapatalk 2

Related

[DEV] Security risk for rooted or S-OFF users

Hello guys. I've became very interested lately about the posibility of locking my phone in case it was stolen. There are plenty of apps in the market that either allow you to remote lock or lock on SIM change. But a user who has some experience with adb or recovery will always be able to simply do a full wipe and flash a new ROM, thus rendering the locks useless. The easiest way is to put a pin when trying to acess the phone with ADB or a custom flashed recovery(S-OFF users). Personaly I do not know if tracking apps will still work in this case so I hope one of you will be able to provide a answer. Also if you have other suggestions of how security measures in this situations should be implemented please tell me.
Honestly there is no way to prevent people from using your phone if its stolen. Its always possible to do a factory reset to gain access to the device. The reason to password protect your phone is to prevent someone else from accessing the data on your phone, which would be erased by doing a factory reset.
Sent from my ADR6300
Runawaycoder said:
Honestly there is no way to prevent people from using your phone if its stolen. Its always possible to do a factory reset to gain access to the device. The reason to password protect your phone is to prevent someone else from accessing the data on your phone, which would be erased by doing a factory reset.
Sent from my ADR6300
Click to expand...
Click to collapse
Then factory reset must also be secured.
Xda app
TheRedDrake said:
Then factory reset must also be secured.
Xda app
Click to expand...
Click to collapse
But then there is no FailSafe for users who forget their password.
It really is an impossible situation - the best solution is either a hardware tracker or wiping data.
a33a said:
But then there is no FailSafe for users who forget their password.
It really is an impossible situation - the best solution is either a hardware tracker or wiping data.
Click to expand...
Click to collapse
Maybe a site where users can register and recover their PINs

[Q] Secure N7 from physical access

Hi,
I understand that if a person get physical access to the device, even if it is encrypted and password protected, access can be obtain by connecting the tablet to a computer.
This could be done even if the N7 is not rooted neither debugging mode is on and fast boot is locked.
Thanks.
Sent from my Nexus 7 using xda app-developers app
My concern is the following one:
The Nexus root kit allow to make a back up of the device, to unlock fast boot (That step will wipe the device), root the N7.
I understand that these steps can be done without N7 password.
When access in root mode, malicious code could be installed.
Nexus root kit allow you to restore the backup previously done, unroot and re-lock fast boot.
If what I state is correct, a person with physical access to the device can do whatever he wants to do. The user will have no way to be aware of it.
There is a way to protect a N7 against that kind of attack?
There is a way to protect access to fast boot or to disable access through USB?
Sent from my Nexus 7 using xda app-developers app
The way I understand it, I may be wrong though.
If you keep the boot loader locked, a malicious person would inevitably have to erase everything on the device to unlock it to root it.
Now if they made a backup first using the tool kit and restored when they were done, I feel they may undo everything they tried to put on your device.
Granted they would have a complete backup of your device on hand after everything's said and done
If physical security is a concern, I'd suggest having your information you want to keep safe completely off the device, using a cloud service, and inputting your password into such apps all the time.
Sent from my Nexus 7 using xda app-developers app
If I turn on pattern lock (haven't tested with pin, password, face, but I don't know why it would be any different), and connect N7 to the computer, it won't connect. As in, I still see the Nexus 7 device in my computer, but when I click on it, it displays nothing. Only once I enter the pattern, files appear.
Of course, once you enter the pattern, you will gain access to files, even if you relock it (while still connected - once you disconnect, you will have to reenter the pattern)
You can encrypt the tablet in Security settings, and while I don't really know what that does, it should make the backup file unreadable without a password, otherwise this feature is useless.
And I think if you disable USB debugging, you can make installing ROMs and stuff not very possible (but I'm not sure - I just assume, since every flashing tutorial starts with 'enable USB debugging')
edit: http://support.google.com/android/bin/answer.py?hl=en&answer=2425151
truehybridx said:
Now if they made a backup first using the tool kit and restored when they were done, I feel they may undo everything they tried to put on your device.
Granted they would have a complete backup of your device on hand after everything's said and done
Click to expand...
Click to collapse
Thanks for your response.
Sorry I miss explain the chronology:
The attacker switch off the device (could be done even if screen locked)
Reboot to the boot loader
Make the back up with the Nexus Root Kit. --> No password required, correct?
Unlock boot loader --> Device wiped.
Root the device
Restore the backup
Include malicious code
Unroot
Re-lock
If any one can confirm what stated is correct and if there is a way to prevent it.
Sent from my Nexus 7 using xda app-developers app
issak42 said:
You can encrypt the tablet in Security settings, and while I don't really know what that does, it should make the backup file unreadable without a password, otherwise this feature is useless.
Click to expand...
Click to collapse
The encryption only cipher apps and other personal data. It does not cypher the system files... To bad
Sent from my Nexus 7 using xda app-developers app
Honestly, what are you afraid of happening? What do you keep on your device that would make someone go to the trouble to do this? They wouldn't even be able to boot into the OS if it was encrypted. The encryption is your best bet. Or, just don't let the device out of your sight (or pocket).
Sent from my Nexus 7 using Tapatalk HD
korockinout13 said:
Honestly, what are you afraid of happening? What do you keep on your device that would make someone go to the trouble to do this? They wouldn't even be able to boot into the OS if it was encrypted. The encryption is your best bet.
Click to expand...
Click to collapse
We need to secure several N7 that will be use by top management. We choose the N7 because no physical ports (unless the USB...). The back of the device will be glued, we will use a tailored version of Android (no google services at all) plus VPN for all data connection but we still get the physical access flaw issue.
Re: encryption
It does not cipher system file.
Sent from my Nexus 7 using xda app-developers app
patarchy said:
We need to secure several N7 that will be use by top management. We choose the N7 because no physical ports (unless the USB...). The back of the device will be glued, we will use a tailored version of Android (no google services at all) plus VPN for all data connection but we still get the physical access flaw issue.
Re: encryption
It does not cipher system file.
Sent from my Nexus 7 using xda app-developers app
Click to expand...
Click to collapse
Hmm... In that case, you might just have to secure it physically. The only way to prevent the exploit you mentioned would be to develop a custom bootloader that doesn't allow fastboot without proper authentication. But that's unrealistic.
Sent from my Nexus 7 using Tapatalk HD
patarchy said:
We need to secure several N7 that will be use by top management. We choose the N7 because no physical ports (unless the USB...). The back of the device will be glued, we will use a tailored version of Android (no google services at all) plus VPN for all data connection but we still get the physical access flaw issue.
Re: encryption
It does not cipher system file.
Sent from my Nexus 7 using xda app-developers app
Click to expand...
Click to collapse
In that case you might look into well, a case with a lock to block the USB or maybe some other hardware hacks that impede the device from connecting to a computer.
A case with charge ports to the pogo pins that obstruct the USB might be an option.
But like what was said, i custom boot loader might be a better option, contact Google directly about how to block boot loader unlocks
Super glue the usb port and charge through pogo pins
Sent from my Nexus 7 using Tapatalk 2
Thanks a lot to all of you for your contributions.
We will super glue the USB port.
Sent from my Nexus 7 using xda app-developers app

[Q] Phone seems to be infected by a Trojan

A few days ago my phone arrived from Ebay. I set it up and all was OK until I put it on the wireless charger. Then I noted that someone started to remotely operate the phone - to switch applications and so on.
During the set-up I upgraded to 4.3 and installed stuff from big and known companies (Facebook, Microsoft, etc.), all from Google Play. I haven't installed anything else. Usually I am very careful with what I install on my devices because I've been developing software for long time and have some experience with security (although this is my first Android phone).
After I noted the issue I restored the phone to its factory settings, installed even less apps, however I experienced the same. The hacker even wrote something playful.
Could you pls tell me how to find out what is going on? Like how was it possible to put a Trojan that would survive an Android update and a factory restore? How to find the Trojan and so on. I later installed some antivirus/antimalware that reported that the phone is clean.
Thank you.
vkamenen said:
A few days ago my phone arrived from Ebay. I set it up and all was OK until I put it on the wireless charger. Then I noted that someone started to remotely operate the phone - to switch applications and so on.
During the set-up I upgraded to 4.3 and installed stuff from big and known companies (Facebook, Microsoft, etc.), all from Google Play. I haven't installed anything else. Usually I am very careful with what I install on my devices because I've been developing software for long time and have some experience with security (although this is my first Android phone).
After I noted the issue I restored the phone to its factory settings, installed even less apps, however I experienced the same. The hacker even wrote something playful.
Could you pls tell me how to find out what is going on? Like how was it possible to put a Trojan that would survive an Android update and a factory restore? How to find the Trojan and so on. I later installed some antivirus/antimalware that reported that the phone is clean.
Thank you.
Click to expand...
Click to collapse
Weird! What did the hacker wrote if I may ask?
I assume this is AndroRat, you can google on how to remove it (I wouldn't know).
Keep is updated!
Sent from my Nexus 4 using xda app-developers app
Factory restore doesn't touch tree system partition, so if the offending app was placed there resetting won't do anything.
Download the factory images from Google and flash them. It will revert you to complete stock
Sent from my Nexus 4 using xda app-developers app
no title
failly said:
Weird! What did the hacker wrote if I may ask?
Click to expand...
Click to collapse
He wrote something in the sort of "Flipped every turtle". I'll quote him after I manage to identify the hack (if I manage
Disconnect it from the net whilst you investigate to protect data
Sent from my Nexus 4 using xda app-developers app
as said above disconnect from wifi and remove your sim card. First thing i would do is use one of the toolkit to unlock or lock bootloader (it completely wipes everything); then do a factory reset. That should do the the trick. If the problem persist contact the police.
Locking our unlocking your bootloader doesn't wipe everything. It wipes userdata. It doesn't touch the system partition. As I said previously. The only surefire way to ensure a complete wipe is either to fully wipe all partitions and install a custom Rom.
Or if you wish to stay stock, download the nexus 4 stock images and flash them.
Doing this will erase all user data & all system data
It will then put stock files back on
Sent from my Nexus 4 using xda app-developers app
It seems like someone else is having the same behavior with their phone. Maybe it has something to do with the type of wireless charger.
Link: http://forum.xda-developers.com/showthread.php?t=2440115
It's probably just wireless charger bugging up the capacitive screen, try the stuff from above and when you flash a new image don't use the wireless charger for few days and see if it still happens.
Sent from my Nexus 4 using xda app-developers app

NST won't connect to B&N

After rooting and re-rooting ½ dozen different NST I find that sometimes after rooting I'm no longer able to access the B&N storefront, whether to browse or download purchased content. I can't seem to find any common denominator, different kernels, installed apps, it just seems random, the only solution that I've found is to revert back to the original nandroid that was made right after rooting and starting from there. Has anyone else experienced this and if so how did you go about correcting it? TIA OB
Sent from my SPH-D710VMUB using Tapatalk 2
OverByter said:
After rooting and re-rooting ½ dozen different NST I find that sometimes after rooting I'm no longer able to access the B&N storefront, whether to browse or download purchased content. I can't seem to find any common denominator, different kernels, installed apps, it just seems random, the only solution that I've found is to revert back to the original nandroid that was made right after rooting and starting from there. Has anyone else experienced this and if so how did you go about correcting it? TIA OB
Sent from my SPH-D710VMUB using Tapatalk 2
Click to expand...
Click to collapse
Does this mean that you get a flash screen when you try to open Shop.apk?
Is this device assuredly registered with B&N already?
You're not copying the same /rom partition to multiple Nooks, are you?
If you are blasting 1.9G images to Nooks, that's what you are doing.
To answer you both, the nooks have been registered and working fine within the B&N ecosystem, however after awhile of trying different apps and settings I lose the ability to communicate with :B&N, on every device to be able to restore connectivity I flashed a nandroid backup specific to that device. It just seems to randomly stop connecting and the only way to rectify it is to go back in time with the nandroid. Which is much simpler than me originally going back to stock and rerooting the device. I wish I could narrow it down because I have quite a few gift cards from relatives, even if I purchased them on my pc I have no way to download them to the Nook itself. If anyone has any ideas I'm up for testing. TIA
OB
Sent from my SPH-D710VMUB using Tapatalk 2
OverByter said:
To answer you both, the nooks have been registered and working fine within the B&N ecosystem, however after awhile of trying different apps and settings I lose the ability to communicate with :B&N, on every device to be able to restore connectivity I flashed a nandroid backup specific to that device. It just seems to randomly stop connecting and the only way to rectify it is to go back in time with the nandroid. Which is much simpler than me originally going back to stock and rerooting the device. I wish I could narrow it down because I have quite a few gift cards from relatives, even if I purchased them on my pc I have no way to download them to the Nook itself. If anyone has any ideas I'm up for testing. TIA
OB
Sent from my SPH-D710VMUB using Tapatalk 2
Click to expand...
Click to collapse
So what is ACTUALLY happening when you try to, let's say, open the shop?
The sync button rotates a couple of times then all of the panes are blank, if I try from the home screen I get a generic error message that something went wrong and to try again. Happens on the home screen, library and the storefront. :banghead:
OB
Sent from my SPH-D710VMUB using Tapatalk 2
OverByter said:
The sync button rotates a couple of times then all of the panes are blank, if I try from the home screen I get a generic error message that something went wrong and to try again. Happens on the home screen, library and the storefront. :banghead:
OB
Sent from my SPH-D710VMUB using Tapatalk 2
Click to expand...
Click to collapse
Boo. I don't really want to tell you this (because it's a hassle), but back when I was a newbie with hacking and such, I had that problem, too, and I had to do the interrupted-boot reset to fix it. :thumbdown:
Why would it be a hassle, there's a much better way to get back to factory stock, just hold down the lower page turn buttons while powering up the device, after a few seconds you'll get a prompt asking if you wish to reset the device. :thumbup: No more 8 failed boot attempts before you could reset.
OB
Sent from my SPH-D710VMUB using Tapatalk 2
OverByter said:
Why would it be a hassle, there's a much better way to get back to factory stock, just hold down the lower page turn buttons while powering up the device, after a few seconds you'll get a prompt asking if you wish to reset the device. :thumbup: No more 8 failed boot attempts before you could reset.
OB
Sent from my SPH-D710VMUB using Tapatalk 2
Click to expand...
Click to collapse
It's not the same process. You can also boot with NookManager and do the factory reset offered there, as it makes the Nook think that it has been unsuccessfully booted 8 times in order to get the actual factory IMAGE to restore.
I'm signing off now. Bye.

Do I lose anything permanently if I unlock/root/ROM?

Just to make sure there's no confusion, of course I understand that both unlocking and re-locking the bootloader result in a factory reset and all of my data stored on the phone will be lost if not otherwise backed up.
My question is about the hardware side of things. I know over the years some phones have been configured such that they lose DRM keys or other data when unlocked, which can not be backed up and thus result in permanent loss of software and sometimes (Sony Xperia Cameras) even hardware features.
Does OnePlus do anything like this on the 6T?
I totally get that if I'm rooted and/or running a custom ROM I may have issues with DRM, SafetyNet, etc while running a modified system. All of my previous Android devices have been rooted and ended their useful lives running CM/LOS versions 2-3 revisions beyond OEM support, I'm familiar with how that goes. My question is if I decide to go back to stock does everything go back to normal or is anything lost for good?
wolrah said:
Just to make sure there's no confusion, of course I understand that both unlocking and re-locking the bootloader result in a factory reset and all of my data stored on the phone will be lost if not otherwise backed up.
My question is about the hardware side of things. I know over the years some phones have been configured such that they lose DRM keys or other data when unlocked, which can not be backed up and thus result in permanent loss of software and sometimes (Sony Xperia Cameras) even hardware features.
Does OnePlus do anything like this on the 6T?
I totally get that if I'm rooted and/or running a custom ROM I may have issues with DRM, SafetyNet, etc while running a modified system. All of my previous Android devices have been rooted and ended their useful lives running CM/LOS versions 2-3 revisions beyond OEM support, I'm familiar with how that goes. My question is if I decide to go back to stock does everything go back to normal or is anything lost for good?
Click to expand...
Click to collapse
Just unlocking the bootloader shouldn't cause issues other than with a few apps such as Netflix streaming level. Rooting Will cause issues with Safety net and some apps although using magisk hide and random app name settings does a pretty good job of getting around that
unlocking the bootloader disables the encryption of filesystem, thus the phone will be wiped clean. So yes, you will lose anything not backed up.
intrusdave said:
unlocking the bootloader disables the encryption of filesystem, thus the phone will be wiped clean. So yes, you will lose anything not backed up.
Click to expand...
Click to collapse
This is partially wrong, unlocking the bootloader does not disable the encryption. It does wipe your phone clean though.
Unlocking the bootloader will cause you to loose Widevine L1 so Netflix and any other app that relies on this will not be able to play HD content, just as jestyr8 said.
Jager said:
This is partially wrong, unlocking the bootloader does not disable the encryption. It does wipe your phone clean though.
Unlocking the bootloader will cause you to loose Widevine L1 so Netflix and any other app that relies on this will not be able to play HD content, just as jestyr8 said.
Click to expand...
Click to collapse
Exactly, but this is reset if the boot loader is relocked, so it's not a permanent change, in answer to the OP query.
Sent from my ONEPLUS A6013 using Tapatalk
Thank you all, and yeah I don't care what I lose while running a modified system as long as I always have the option to just flash back to stock and make everything normal again if I want.
edit: Just to be clear about the Netflix thing, that means I lose some of the higher resolution options when playing on the device itself, right?
A few years ago one of the updates to the Netflix app made it just straight up stop working on my Note 4, even as a Chromecast controller.
I really don't care all that much either way because I basically never watch on my phone and all my main TVs have Fire Sticks or other devices with remotes and Netflix clients, but sometimes Chromecasting is the most convenient option so it'd be moderately annoying to lose that again.
wolrah said:
Thank you all, and yeah I don't care what I lose while running a modified system as long as I always have the option to just flash back to stock and make everything normal again if I want.
edit: Just to be clear about the Netflix thing, that means I lose some of the higher resolution options when playing on the device itself, right?
A few years ago one of the updates to the Netflix app made it just straight up stop working on my Note 4, even as a Chromecast controller.
I really don't care all that much either way because I basically never watch on my phone and all my main TVs have Fire Sticks or other devices with remotes and Netflix clients, but sometimes Chromecasting is the most convenient option so it'd be moderately annoying to lose that again.
Click to expand...
Click to collapse
Chromecast seems to work in most ROMs.

Categories

Resources