i have a Samsung galaxy M30s android 9 , and before doing a factory reset, i used a password for lock screen and i know that this phone galaxy m30s have no KNOX , so is my data after formate protected and encrypted by FBE (file based encryption) or not ?

  • @southerntofu@lemmy.ml
    link
    fedilink
    12 years ago

    TLDR: if you want security NEVER use a phone, it’s the worst from all angles you can look at.

    Lock screen has nothing to do with encryption. I’m not sure what’s the current status with android encryption is but if your phone can boot without a passphrase it’s not safe. It may be encrypted but if the key is stored right alongside the encrypted blob it’s not secure at all (much like Signal’s history on phones).

    My understanding from very far away is that actual Android features for full-disk encryption have been dropped at least by LineageOS. It seems mainline Android encrypts some stuff but it’s really not clear to me what or in what circumstances. Although to be fair, extracting data from on-board disk is much harder than from SDCard, whether it’s encrypted or not, but that’s not the venue preferred by attackers. Usually, your OS will have a well-known 0-day that allows to break all security layers whether you have disk-encryption or not (if the drive has been decrypted already, such as if your phone is on) using an exploit box like Cellebrite devices police operate in many countries.