And I didn't know that.
So everything is relying on bootloader security, that must be locked.
Via +Amon RA
#supercurioBlog #security #encryption
Android for Work: Demystified
Android for Work has been announced by Google only some days ago and Google promises a secure but also usable way to combine sensitive company data and private data on a single device without incre…
5 thoughts on “Spoiler: sensitive work files are not stored encrypted beside the full disk encryption, which has been exploited with FROST:”
Why they had to put it in freezer when the bootloader has to be unlocked on installing frost recovery?
Or is handling a bootloader of a scrambled (encrypted?) phone for recovery image more difficult than handling an unencrypted phone?
+Thomas Schmidt-Esterle +ExtremeTech's article explains that 😉
Ah okay, freezer because ram cells preserve their data longer if they are cold.
Sorry, but its obligatory:
Google basically cheated, they just create a new user account for the work profile.
What they do also show why applications should not trust device's security and secure it's data itself… Most android mail clients store password in plain text, pretending it's useless to crypt them as if someone is root they will be able to access it, what they forget is if each application had it own crypting it would be long, and being able to root a device using a tutorial, or the same installing a new recovery won't make the villain suddenly able to code a key logger our something.