- cross-posted to:
- grapheneos@lemmy.ml
GrapheneOS provides users with the ability to set a duress PIN/Password that will irreversibly wipe the device (along with any installed eSIMs) once entered anywhere where the device credentials are requested (on the lockscreen, along with any such prompt in the OS).
The wipe does not require a reboot and cannot be interrupted. It can be set up at Settings > Security > Duress Password in the owner profile. Both a duress PIN and password will need to be set to account for different profiles that may have different unlock methods.
Note that if the duress PIN/Password is the same as the actual unlock method, the actual unlock method always takes precedence, and therefore no wipe will occur.
- macniel ( @DmMacniel@feddit.de ) 26•26 days ago
Mhm i can imagine that GrapheneOS will be marked as an illegal OS once Interpol and others get wind of this kill switch.
- boldsuck ( @boldsuck@scribe.disroot.org ) 5•26 days ago
The people Interpool is after don’t need Duress. They simply refuse to give out their password. Current Pixel and iPhones phones cannt be cracked with forensic tools. https://discuss.grapheneos.org/d/12848-claims-made-by-forensics-companies-their-capabilities-and-how-grapheneos-fares
- ryannathans ( @ryannathans@aussie.zone ) 4•26 days ago
Doubt it, wouldn’t they just clone the flash first?
- refalo ( @refalo@programming.dev ) 10•26 days ago
irreversibly wipe the device
And for anyone to actually go through the trouble of cloning a flash chip, you’d have to be an extremely high profile target.
- ryannathans ( @ryannathans@aussie.zone ) 3•26 days ago
Who the fuck do you think interpol are targeting? Lmao
- smileyhead ( @smileyhead@discuss.tchncs.de ) 15•26 days ago
Wonder if this say a big “WIPING…” and shows a blank profile then.
Because it would be much more useful if this would erase real profile and then quickly switch to some fake profile looking real.
- Andromxda 🇺🇦🇵🇸🇹🇼 ( @Andromxda@lemmy.dbzer0.com ) English1•22 days ago
It doesn’t say anything. It shuts the device down almost instantly, and simulnateously wipes the encryption keys from the secure element, ensuring that the data stored on the SSD can’t be decrypted.
- ryannathans ( @ryannathans@aussie.zone ) 11•26 days ago
Long overdue
- ResoluteCatnap ( @ResoluteCatnap@lemmy.ml ) English5•26 days ago
Why didn’t you contribute this feature sooner then?
- ryannathans ( @ryannathans@aussie.zone ) 7•26 days ago
I’m maxed out on open source contributions myself right now as maintainer of a large project
- MachineFab812 ( @MachineFab812@discuss.tchncs.de ) 4•25 days ago
… and I’ve been told I’m demanding and entitled, but here’s some jackass who downvoted one(@ryannathans) who is doing the work. You or I can never do enough to be worthy to request certain features or bug-fixes be given higher priority.
These people need to go back to Spez’s, Musk’s, or Zuck’s playground, since they love having no say so much.
- refalo ( @refalo@programming.dev ) 8•26 days ago
something something destruction of evidence
- Jolteon ( @Jolteon@lemmy.zip ) 5•26 days ago
Alternately, it could unlock the phone while also erasing specific parts of it, like message history and call logs, potentially replacing them with something you’d set up previously.
Edit: and obviously it would disable the duress pin and set the unlocking pin to it.
- Possibly linux ( @possiblylinux127@lemmy.zip ) English7•26 days ago
That’s actually pretty cool. I just wish they would take a stance against proprietary software.
- Everett ( @yeehaw_cosmonaut@reddthat.com ) English7•26 days ago
Cool feature, I wonder if a duress fingerprint will be introduced in the future?
- Jolteon ( @Jolteon@lemmy.zip ) 20•26 days ago
I feel like that would be a lot easier to accidentally trigger.
- Everett ( @yeehaw_cosmonaut@reddthat.com ) English4•26 days ago
You’re not wrong, but like the duress pin, it would be a nice feature to have. Not everyone would have to set a duress fingerprint, just the people who find value in it.
- Kayel ( @Kayel@aussie.zone ) 6•26 days ago
You would not believe how much I have lost from being obsessed with high-threat modeling for my low-threat life. $10k and family videos for a start.
Sometimes it’s a good idea to protect the community from itself lol.
- sic_semper_tyrannis ( @sic_semper_tyrannis@lemmy.today ) 3•26 days ago
Very nice