Privacy

31182 readers

530 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 4 years ago

MODERATORS

Is pixel 4a too old for a new phone? (lemmy.world)

submitted 2 months ago by Dop@lemmy.world to c/privacy@lemmy.ml

126 comments fedilink hide all child comments

Hi,

A friend wants to degoogle his phone, so I suggested the OS I'm currently using. The one we can't talk about... He wants a small/compact phone, so I suggested pixel 4a (not buying second hand though), but I'm afraid that planned obsolescence may kill the phone rather soon. What's your opinion?

Cheers and thank you for your help,

you are viewing a single comment's thread
view the rest of the comments

[–] delirious_owl@discuss.online 1 points 2 months ago (1 children)

TPMs protect the data on the drive if the drive is separated from the computer. If the drive is still in the computer, then it doesn't protect the data. It doesn't provide protection from physical attacks.

[–] jet@hackertalks.com 1 points 2 months ago (1 children)

https://learn.microsoft.com/en-us/windows/security/hardware-security/tpm/tpm-fundamentals

Devices that incorporate a TPM can create cryptographic keys and encrypt them, so that the keys can only be decrypted by the TPM. This process, often called "wrapping" or "binding" a key, can help protect the key from disclosure.

This is how cell phones and windows hello justify short pins, the pin goes into a rate limited TPM that then discloses a larger key to decrypt the actual secret.

[–] delirious_owl@discuss.online 2 points 2 months ago (1 children)

Do you need me to link to the vulnerabilities of TPMs? They do not provide physical security.

[–] jet@hackertalks.com 1 points 2 months ago (1 children)

Does this mean your also against yubikeys?

[–] delirious_owl@discuss.online 2 points 2 months ago

Hardware keys can be used well to increase your secuirty (U2F MFA) or used to increase convienence and reduce security (passwordless auth)

It depends how the tool is used.