Privacy

31182 readers

530 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 4 years ago

MODERATORS

Magnet Graykey can provide same-day access to the latest iOS and Android devices – often in under one hour. (www.magnetforensics.com)

submitted 1 month ago by TheReturnOfPEB@reddthat.com to c/privacy@lemmy.ml

51 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Jean_le_Flambeur@discuss.tchncs.de 0 points 1 month ago

You keep referring to concepts like "Keys encrypted with itself" "Tpm are by design encrypted"

When you don't really say anything from value.

Not every "encryption" is the same.

When we talk about safe encryption we talk about file system level encryption of a system with safe algorithms like aes and a long enough random password (the key). this is safe.

If you store the key unencrypted on your phone, this encryption is no longer safe.

If you don't know the 16 random digit key it HAS to be on the phone and it CAN'T be encrypted "by itself" because you would no longer have any means to decrypt it.

It could be encrypted with a pin, but again, then its only as strong as the pin, and I don't know how long an only numeric pin would need to be to withstand modern brute forcing, but I doubt a relevant percentage of people have that kind of pin.

You can't explain how this would be safe, so you just come at me with russels teapot and say "well you can't prove its not safe" (which is true because I'm no security expert, but someone with enough knowledge could certainly) and lash out at me "acting in bad faith" because I don't jump through your hoops of passive aggressive misunderstanding.

All I can do is refer to experts, who found things like CVE-2022-20465 - a bug which allowed lockscreen bypass.

As you could have googled that yourself, but you ask this just to throw me off.

But if you want to keep using your google android and bitlocker win and feel safe, its not my problem.