[Q] Extra Security for my Galaxy S6 Edge - Galaxy S6 Edge Q&A, Help & Troubleshooting

I live in Venezuela, one of the most dangerous countries in the world - safety regarded, if not, the most unsafe.
I have been sporting my GS6 Edge without any problem but i don't know when i can be the subject of a gunpoint theft, kidnap, common theft etc.
I wish to do an extreme makeover of my S6 Edge security settings. I have the fingerprint scanner but i do wish to have extra security level. Such as when i open certain app, it prompts me for a particular password. Yes, i'm willing to input a password every time i open certain applications in my phone....
Is there anything as it? That i can download and ask me a password for gmail, whatsapp,bbm... etc. Gallery......
I'm not rooted, and have never clicked on the Encrypt device thing, what does it does? Can i see a video? Can i de-encrypt in case i do not like the encrypt option? I need ideas for a better security than the fingerprint. If a thief gets my phone he might be able to see my personal info/family things. etc.
Also. 2. What are the better options for remote wipping, locate my GS6 etc. I just need to pay more attention to my devices security. Better be cautious than sorry.
Thanks folks!

Hello
For locking your apps I would recommend FingerSecurity http://forum.xda-developers.com/gal...fingersecurity-fingerprint-lock-apps-t2818896
For Remote Wiping etc, I recommend Cerberus http://www.xda-developers.com/invoke-cerberus-to-protect-your-phone-from-theives/

Look this.
https://play.google.com/store/apps/details?id=com.sp.protector.free&hl=en

Related

TOP 11 Tips To Secure Your Xperia

You have got the Android phone and have all your personal data stored in that which includes your passwords and all personal information which is too sensitive. Just like you think your Android phone is a precious belonging to you, same is the case with the data it holds. So what if your phone is stolen or hacked by someone or it is lost?
Each day, you like some app and try to get it for your Android phone. Well that is nice but even that lets your security to lose a bit of ground. To secure your Android phone’s data, you need to have a good knowledge about enhancing the security options. Also, you got to implement some things that shield you in the times when you can get your data to fall in some stranger’s basket. Learn how you secure it.
1. Use SE Android OS
When you get some app downloaded to your phone then you give it some or more access as well. This lessens up your security. To help you National Security Agency (NSA) has created a new SE Android OS. This is a version of Android OS which is much secure and locks your phone and data exploitation by the unknown.
2. Lock your Android phone
You can lock your Android phone by setting a passcode. To do so, go to the ‘settings menu’ and tap on ‘location and security’. You will see there an option to ‘set unlock pattern’. By locking your phone properly none can use it without your prior permission and your data stays secured and intact.
3. Advanced security options
MobileDefense, TenCube and WaveSecure are few good advanced security options that you can choose from. If you lose your phone or it is stolen away then in that case you get an option to wipe off all the personal data by using these kinds of app only.
4. Apps that secure your Android phone
Get your Android phone protected from web intruders by selecting powerful anti-malware apps like Lookout. With such an app you can be rest assured that your security will remain intact when you are browsing, using your Android phone.
5. SIM card lock
In an addition to the prior phone lock mentioned in this article, you must choose for a SIM card lock by setting up a PIN code. This will secure all your contact information and the data usually stored in a SIM.
6. Third party protection
Programs and software like AVG, Norton, Trend Micro help you in securing your data in various many ways. It is better to get the premium protection cover rather than going for the free ones because a premium one provides you with a complete protection cover.
7. Full device backup
There are apps like Titanium Backup which can help you in getting a clone or backup of your phone onto the hard disk of your computer. In the case of theft or severe physical damage to your phone, backup helps you to get everything as it was.
8. Dropbox
Dropbox is cloud storage software which works with Android OS and then gives you complete access over your data on the go. One has to sign up for a Dropbox account and then save all essential and needy files in it. Without a Dropbox, you cannot thing of the backup of your data.
9. How Google helps in securing
When you have an Android phone that means, everything you use from an email to apps and contact information; all this stays with your [email protected] account and address. Simply add that to your new phone and import everything from there to the new device.
10. Secure data with AndroidLost
Go to the Android Market and search there for AndroidLost. When you find this application, install it to your Android phone (this is free for all Android gadgets and devices). By logging in with your Google account to the AndroidLost website you have full command over your data, even when the phone is not with you.
11.MY XPERIA
If you happen to misplace your Xperia™ device, the my Xperia service helps you to find it and protect private information by locking your device or even deleting all information on your device. The my Xperia service is offered by Sony Mobile Communications free of charge.
The my Xperia service uses the Google account on your device. If you are using several Google accounts on your device, you can sign in with any of them. You can connect several devices to my Xperia, using the same Google account.
For the my Xperia service to work, your smartphone or tablet must be turned on and has to have a working data connection.:angel:​
Nice tips to get a bond phone
Can u elaborate first point??
drsanket_xperia_u said:
Nice tips to get a bond phone
Can u elaborate first point??
Click to expand...
Click to collapse
defn by wiki-
What is SE for Android?
Security Enhancements for Android™ (SE for Android) is a project to identify and address critical gaps in the security of Android. Initially, the project is enabling the use of SELinux in Android in order to limit the damage that can be done by flawed or malicious apps and in order to enforce separation guarantees between apps. However, the scope of the project is not limited to SELinux.
SE for Android also refers to the reference implementation produced by the project. The current reference implementation provides a worked example of how to enable and apply SELinux at the lower layers of the Android software stack and provides a working demonstration of the value provided by SELinux in confining various root exploits and application vulnerabilities.
hope it helped....
is there an easy way to see if youre phone is getting hacked/virus? like a tools. because sometimes after 2-3 months my phone become slower and slower (need to reflash it again) and i use the phone just for daily basis like call, internet, messaging.
noel_din said:
is there an easy way to see if youre phone is getting hacked/virus? like a tools. because sometimes after 2-3 months my phone become slower and slower (need to reflash it again) and i use the phone just for daily basis like call, internet, messaging.
Click to expand...
Click to collapse
it shoud nt hapn if rooted use avast security..:angel:
C00ldUdE8655 said:
it shoud nt hapn if rooted use avast security..:angel:
Click to expand...
Click to collapse
rooted use avast security? protect with avast you mean? i do that, but my sola will slow down to the point i want to hit a wall with it :laugh:
Great tips man...like it
Sent From C6603 Using xda premium
Encang_Rojali said:
Great tips man...like it
Sent From C6603 Using xda premium
Click to expand...
Click to collapse
liked it..prezz **THANKS**
C00ldUdE8655 said:
You have got the Android phone and have all your personal data stored in that which includes your passwords and all personal information which is too sensitive. Just like you think your Android phone is a precious belonging to you, same is the case with the data it holds. So what if your phone is stolen or hacked by someone or it is lost?
Each day, you like some app and try to get it for your Android phone. Well that is nice but even that lets your security to lose a bit of ground. To secure your Android phone’s data, you need to have a good knowledge about enhancing the security options. Also, you got to implement some things that shield you in the times when you can get your data to fall in some stranger’s basket. Learn how you secure it.
1. Use SE Android OS
When you get some app downloaded to your phone then you give it some or more access as well. This lessens up your security. To help you National Security Agency (NSA) has created a new SE Android OS. This is a version of Android OS which is much secure and locks your phone and data exploitation by the unknown.
2. Lock your Android phone
You can lock your Android phone by setting a passcode. To do so, go to the ‘settings menu’ and tap on ‘location and security’. You will see there an option to ‘set unlock pattern’. By locking your phone properly none can use it without your prior permission and your data stays secured and intact.
3. Advanced security options
MobileDefense, TenCube and WaveSecure are few good advanced security options that you can choose from. If you lose your phone or it is stolen away then in that case you get an option to wipe off all the personal data by using these kinds of app only.
4. Apps that secure your Android phone
Get your Android phone protected from web intruders by selecting powerful anti-malware apps like Lookout. With such an app you can be rest assured that your security will remain intact when you are browsing, using your Android phone.
5. SIM card lock
In an addition to the prior phone lock mentioned in this article, you must choose for a SIM card lock by setting up a PIN code. This will secure all your contact information and the data usually stored in a SIM.
6. Third party protection
Programs and software like AVG, Norton, Trend Micro help you in securing your data in various many ways. It is better to get the premium protection cover rather than going for the free ones because a premium one provides you with a complete protection cover.
7. Full device backup
There are apps like Titanium Backup which can help you in getting a clone or backup of your phone onto the hard disk of your computer. In the case of theft or severe physical damage to your phone, backup helps you to get everything as it was.
8. Dropbox
Dropbox is cloud storage software which works with Android OS and then gives you complete access over your data on the go. One has to sign up for a Dropbox account and then save all essential and needy files in it. Without a Dropbox, you cannot thing of the backup of your data.
9. How Google helps in securing
When you have an Android phone that means, everything you use from an email to apps and contact information; all this stays with your [email protected] account and address. Simply add that to your new phone and import everything from there to the new device.
10. Secure data with AndroidLost
Go to the Android Market and search there for AndroidLost. When you find this application, install it to your Android phone (this is free for all Android gadgets and devices). By logging in with your Google account to the AndroidLost website you have full command over your data, even when the phone is not with you.
11.MY XPERIA
If you happen to misplace your Xperia™ device, the my Xperia service helps you to find it and protect private information by locking your device or even deleting all information on your device. The my Xperia service is offered by Sony Mobile Communications free of charge.
The my Xperia service uses the Google account on your device. If you are using several Google accounts on your device, you can sign in with any of them. You can connect several devices to my Xperia, using the same Google account.
For the my Xperia service to work, your smartphone or tablet must be turned on and has to have a working data connection.:angel:​
Click to expand...
Click to collapse
OK, a good comprehensive list...can you give a poiner to start working with SELinux...something that will help me start developing policies or something?
please add the source. ive read the same post somewhere
Nice tips bro, like it!

[App] NFC Safe (Freeware)

Hi,
I made a new app: NFC Safe!
With NFC Safe you will be able to encrypt your private data with a NFC Tag (e.g. NFC Key Fob). You can add unlimited custom folder and entries. You will have only access to those entries with the specific NFC Tag! This is much more secure than protecting your data only with a password!
You can use any NFC Tag for this app! Your NFC Tag will be written with some data so it can only be used for this app.
NFC Safe | Windows Phone Apps+Games Store (United States)
Would be nice, if you test my app! My app is available for free!
With one of the next releases it will be also possible to encrypt/decrypt media files (images, audio, etc.)
Best Regards,
Sascha
I don't have any NFC tags on me right now nor would i really use this, but i have to say, this is a really cool idea!
While I understand if you're hesitant to post it, I'd want to review the app's source code before using it myself. Getting cryptography right, even when just using existing and well, implemented pieces, is vastly harder than getting it wrong. What algorithm do you use to encrypt the data? How about generating the key data? Are you using secure buffers? Initialization vectors? How are you detecting which key is correct for the data you're trying to access; is there a hash? What hash function? There are a lot of other important questions here, too.
With that said, the idea is fantastic. It would be especially great if you could support two-factor authentication (password + NFC tag, in this case) for extra-sensitive data, although password management in crypto has its own set of problems (what key derivation function, with what parameters? How are the password verifiers stored? Etc.)
Sorry for late reply!
xandros9 said:
I don't have any NFC tags on me right now nor would i really use this, but i have to say, this is a really cool idea!
Click to expand...
Click to collapse
Then you should buy an NFC Tag! They are really cheap. For example you could buy a NFC keyfob, so you will have your NFC tag always in your pocket and as said, such a NFC Tag costs ca. 1 USD at ebay
GoodDayToDie said:
While I understand if you're hesitant to post it, I'd want to review the app's source code before using it myself. Getting cryptography right, even when just using existing and well, implemented pieces, is vastly harder than getting it wrong. What algorithm do you use to encrypt the data? How about generating the key data? Are you using secure buffers? Initialization vectors? How are you detecting which key is correct for the data you're trying to access; is there a hash? What hash function? There are a lot of other important questions here, too.
With that said, the idea is fantastic. It would be especially great if you could support two-factor authentication (password + NFC tag, in this case) for extra-sensitive data, although password management in crypto has its own set of problems (what key derivation function, with what parameters? How are the password verifiers stored? Etc.)
Click to expand...
Click to collapse
Hi thanks for your feedback and your questions! I think you misunderstood my app. It's not a military app, where the highest security is important! My app doesn't need to encrypt the data, because the data is stored on your Windows Phone in the application data storage. Noone has access to this. If ever any person has access to those data, you and all other Windows Phone users have a very big problem!
So, my app is an app, not a Windows Application, where virus, NSA, etc. have access to your data There are a lot of apps which protect your personal data with a password. So if someone else has your phone (stolen, or a friend while you are not watching at it), he will be able to see your data, if the know your password (this is not impossible!) or guess your password! So my app protects your data with an NFC Tag. It's very comfortable to use and faster than typing a password and also more secure, because the third-person needs your phone AND your NFC Tag.
However, my app also encrypts the whole data, so even if someone have access to the application data storage, he will be unable to read your data. Windows Phone has a built in encryption mechanism, which can be used from an API. I'm using this encryption mechanism. This mechanism uses Triple-DES. It uses the user credentials and a randomly generated password (GUID with 36 chars/numbers and "-"-sign) to encrypt the data.
Hi! Welcome to XDA-Developers, where all of your assumptions about what cannot be accessed on the phone are wrong, or will be shortly!
OK, that's half a joke. But only half... as it turns out, the claim that "... Windows Phone in the application data storage. Noone has access to this." has been untrue for months. Check the Dev&Hacking forum, especially the Interop-unlock and SamWP8 Tools threads. We have the ability to access the entire WP8 file system. Currently that access is only via MTP (USB connection), but I and other people are working on extending it to homebrew apps as well.
Moving on... 3DES (even if used with a good mode of operation and a unique initialization vector, which I am guessing you probably didn't do) is obsolete and should not be used anymore. While it is considered adequate for existing code, it should not be used in new software, and cryptographers have been recommending a move to newer ciphers (such as AES) for years. As for using a GUID as a password, GUIDs are 128 bits (the dashes don't count, because they are always the same value in the same place, and each of the other 32 digits is hexadecimal only, meaning merely 4 bits of data), which is plenty if they are generated securely; however, most GUID generators do not use cryptographically secure random number generators. GUIDs are supposed to be unique (that's what the U stands for), but are not guaranteed to be unpredictable (which is one of the key requirements for an encryption key), and the way they are generated reflects this.
Oh, and good security is important in an awful lot more places than "a military app"! In fact, there's no such thing as "military-grade" encryption, really; there's only good encryption, and encryption which shouldn't be used for any purpose. For example, modern TLS (Transport Layer Security, the replacement for SSL or Secure Sockets Layer) cipher suites are intended to be secure even against governments and megacorporations (although there is of course suspicion as to whether the NSA have broken some of those cipher suites)... but TLS isn't just used on extremely sensitive stuff like top-secret documents and such, it's also used when browsing Facebook and Twitter, or accessing Gmail, or many other things of similarly minor sensitivity.
Thank you for explaining the intended use cases of the app, though. Do please be careful when making claims such as that something is "much more secure", though; you are liable to mislead people. TrueCrypt, a PC app that performs disk encryption and is intended to stand up to very powerful adversaries, uses only a password most of the time - but I would expect that, given a well-chosen password, it is more secure than this app. There are many critical components to security, and only the weakest link in the chain matters.
For what it's worth, if you are interested, I would be happy to help secure the app (on my own time, free of charge) as it sounds like something that I would quite like to use, if I could trust its security.
What exactly is your problem?!?!
I said, that noone has access to the Application Data Storage and this is true! There is no Virus available for Windows Phone and there is no App in the Store available which has access to another app's data storage! We are not talking about some special cases where the third-person already have STOLEN your device, because nothing in this world is safe! NOTHING! Everything can be hacked! Also I didnt know that all current Lumia devices were hacked. Other devices are not relevant (Nokia has a market share of more than 90%!).
The built-in encryption mechanism in Windows Phone is the same almost ANY Windows Phone app uses! Any banking app, Facebook, eBay, PayPal. The Wallet feature of Windows Phone uses it. If you have set up accounts (E-Mail, Microsoft Account, Office365, etc.) your passwords were encrypted with the SAME API my app uses. So if you think this API is totally unsafe, WHY THE HELL are you using Windows Phone? Also Windows Vista, 7, 8 and 8.1 uses THE SAME API for a lot of thinks. So please don't use Windows anymore!
I said, my app is more secure THAN AN APP which only uses a password and that is true. Also my app additionally encrypts the data and not only block the access to the data (which a lot of other apps only do!).
Please decrypt the attached file and tell me, how you did that and how long it took Thanks!
Whoa, whoa, calm down.
First of all, don't count on that "no app in the store..." business; There's *probably* no malicious app that can do so, but OEM apps can, if they have som reason to do so, access other app's install and data folders. I've written apps (using the Samsung OEM components, which are clumsy for the purpose but *do* work) to do it myself. It's not something you're likely to see in widespread use, but it's possible.
If you aren't bothering with the case of your phone being stolen, what's the point of the encryption anyhow? I mean, prevention of data loss in the event of device theft is one of *the* key use cases for data storage encryption! It's the rationale behind things like BitLocker (which is available on WP8, but only if the user has connected their phone to a company's Exchange server that pushes a policy requiring device encryption).
If you were honestly worried about market share, you probably wouldn't target WP at all; Nokia's fraction of the WP market share is lower than WP's fraction of the smartphone market share. Nonetheless, you are correct that, at this time, Nokia WP8 devices haven't been cracked. Nor have HTC's phones. I'm confident that this will change in time, though. You might have misunderstood my little joke at the start of my last post... but breaking into smartphone operating systems, getting past the lockdown policies that say "noone[sic] has access" (it's "nobody" or "no one", by the way) and taking those decisions into our own hands.
I guarantee you that the vast majority of WP apps don't use 3DES. I *know* full well that the Microsoft code doesn't; they had already deprecated that cipher years ago, when I interned there, long before even WP7 existed; its use was prohibited for new code. Just because you used the DPAPI (Data Protection API) doesn't mean you used it correctly (and by the way, that internship involved working on encryption in Windows, writing test tools for it). Please don't take this as some kind of personal insult; in my line of work (security engineer), I see a ton of misuse of cryptography. It is, as I said in my first post, hard to get right. That's why I offered to help.
I'm not going to bother taking the time to figure out what cipher you used on that file, and what its contents are supposed to look like enough to start doing any cryptanalysis, but I guarantee you it's not very good. There are repeated patterns, including long strings of null bytes, that are phenomenally unlikely to occur in a file that short after passing it through even a half-decent cipher (we're talking 1-in-several-billion chance here, no joke). Coming to this conclusion took all of a few seconds, by the way, using no tool more sophisticated than Notepad++. If I was pulling it off of a phone, I'd have a lot more idea of what type of plaintext to expect, and I could examine the decompilation of the app to see what ciphers were used, which would make things a lot easier. I'd say "for all I know, you just took the output of CryptGenRandom and put it in a file" but if you had, it wouldn't have had obvious patterns in it... in any case, it doesn't matter. I don't have to prove anything to you. I'm *trying* to help, and offer some good advice as well, but I can't force you to take it. There's no call for getting defensive, though. I wrote a file encryption utility myself one, in fact. It sucked, so then I wrote a program to break its encryption. Both experiences (but mostly the latter) taught me things.
A new version is available now, which includes image/photo encryption, OneDrive backup, bugfixes and other small improvments!
http://www.windowsphone.com/s?appid=0a8656d4-ed32-4bb5-baac-1317827e18d8
Hi,
I have a question:
My app is available in German and English since one year now! It was downloaded over 1000 times in Germany, but only 80 times in USA, UK, etc. I got 40 reviews (4-5 stars) in Germany and only one bad review in USA. So could someone explain what's wrong with my app? Is it not visible in the US Windows Phone store? Is my app very bad translated? Are there no Windows Phone users in the USA? Or maybe no one use NFC in the USA?
Best regards,
Sascha
Sorry, I don't tried your app yet but will try to answer your questions.
First, probably it's something wrong with your marketing, not the app Le me say: 1080 downloads per year - it's too small number (even 1000 in Germany). For example, my "marketplace entry ticket", "Lunar Lander Touch" app, very unpopular and underrated (but it's still one of my favorite games on WP, and good alcohol tester ), has 4078 for the year 2013.
As for NFC: I've tried to use it but stopped because of very uncomfortable WP implementation. That service should work flawlessly, without user interaction, stupid questions and dialogs, to be useful and popular. But unfortunately it's not (for the Windows Phones). Microsoft must add an option to disable NFC warnings.
P.S. I may recommend you to use "Snowden case" for advertizing
Thanks for your feedback!
Yes, I know that the download numbers are very bad, but I don't have an idea how to improve this. Because of my app is free and my private hobby I don't have money to buy ads, etc.
Improving my app had not effect. Thanks to DVLUP I "bought" ads for 50$ with AdDuplex, but this also had no effect.
It's really hard for individuals to get their apps famous and in a higher ranking in the Windows Phone Store without investing money
I understand... AdDuplex is really bad: I've tried once ($100 from DVLUP meeting plus I've bought another $100 coupon for $40) during a week - no results at all. Complained to AdDuplex support and manager gave me additional $300 for free, to spend within one day (sic! He-he, I wish to get $300 daily from my app!) - still no visible results, just a regular download fluctuations...
What you may try: advertise on more forums, prepare good pictures/screenshots; may be, video clip "howto" will be helpful. Embed RateMyApp Nokia's control (check NuGet) to your form. If you have XP on DVLUP, spend 'em for advertising campaign (these ones are extremely effective!).
P.S. I also thought about xda-based developers club, with "rate 5 stars my apps, and I'll rate yours" rule but I don't know how to implement it properly (but good customer rating is very important for the app distribution).
Thanks!
I already added RateMyApp. This was really helpfull to get more reviews. It's a pity that I had not implemented such a thing from the very first time my app was added to the Windows Phone Store :-/
I "bought" 1 week in App Social (DVLUP). Hope this helps. But it is also only in Germany.... I have enough users and reviews in Germany, I need them in USA, UK, etc. The problem with the DVLUP campaigns is, that you need at least 50 or 100 reviews (and 4,5 stars) as a requirement for the advertising. But you don't have so many reviews and that's the reason why you need the campaign to get more reviews, but you can't buy the campaign... A vicious circle!
I will do my best to get more downloads in other countries than Germany!
Hey, thanks for this app i find it realy useful.
Danke!
And here is the idea for the ad banner
Great idea
btw: Version 2.1 with new type "User Credentials" is available now!
Ok, I stopped developing, it's not worth. Sorry!

Security apps

I have two security type questions. Both of which I couldn't find much doing a search here and Google didn't have any direct answers that satisfied my curiosity.
My first question is security in terms of hardware. Is there some type of app or something that would prevent the average or slightly above average user the inability to ever use the phone if stolen. Some way to prevent even someone factory resetting from the system menu (i.e. The menu when. Holding home , power, vol -) by needing a pin or something? Even if in order to factory reset from there require a pin or something?
The other question is in terms of software/OS...like an Internet security suite such as kaspersky or something. ..is this really even worth using? Specifically an anti virus/malware program? If so would these cause issues or headaches when installing roms or other similar modifications?
These both will probably be viewed as dumb questions but I'm just wondering.
Sent from my SM-900V using XDA app.
-Note3 running Jelly 'Beans' B5
Android Device Manager will allow you to lock your phone remotely, change the password and even erase it. There are third party apps available that can do similar/more advanced procedures remotely
Most of the popular AV/Malware companies have apps for Android. I personally don't see a need for them, but they are available.

Privacy Ace App: Is it any good?

Hello Friends,
My name is Ivaylo and I am new to the forum. I decided to make a registration, because I wanted to ask for some help from you guys. For the past few weeks, I have been looking for an app that can help me protect my personal information (Facebook, Phone gallery, Call logs, etc.) on my smartphone (currently using Samsung Galaxy S5). I have tried quite a few free apps from Google Play such as AppLock, Smart AppLock and the like. Among those, I came across this app called Privacy Ace. To be honest, I liked the design and interface of Privacy Ace. Both very pretty simple and user friendly. On the other hand the other apps I tried (i.e. Smart AppLock) offer more features (i.e. 'Observer' feature; if someone tries to access your phone and enters the wrong password a few times, the app takes a picture of that person and later on you can see who has tried to break into your phone). However Smart AppLock, for example, has kind of a clustered interface. It was really difficult for me to find out how to use the various features of the app. I really got frustrated while trying to figure out how to use it. I am not the most intelligent person, but I know how to use smartphones, if you know what I mean. Still I am looking for something that is simple to use and can get the job done.
So my question basically is: has anyone else tried Privacy Ace and is it any good? How is the app performance-wise? Should I give it a try? Feel free to suggest other apps of the same type too.
Thanks for the help in advance
Cheers
Ivaylo

Nexus Imprint User Control Considerations(UCCs)

I am very excited to have access to bio-metric security on my new phone. However, for those of us in the U.S., there is one security exception that you should consider.
While its generally understood that no one, by law, may compel you to reveal a password; fingerprints themselves are NOT legally protected by the 5th amendment. There is precedence set that interprets the legal right for law enforcement to collect blood and DNA samples as evidence clearly extending to fingerprints.
If you want to fact check that, just google 'forced to fingerprint unlock' and you can pick from sources you trust the most:good:
Therefore, I want to know what XDA has to say about this. We have the phones now.What can we do?
My idea involved allowing the user to use fingerprints to authorize actions within the OS for speed(Ie Android pay,play-store purchases,access to contacts, etc), however disallowing fingerprint authentication for device unlocking and rely on PIN only. I think that is the best way to balance ease of use and security that a fingerprint reader adds while also avoiding the general lack of control over the authentication method used( fingerprints).
Even Google admits in the documentation, and I quote, "A physical copy of your fingerprint could be used to unlock your phone. You leave fingerprints on many things you touch, including your phone."(https://support.google.com/nexus/answer/6285273).
Therefore a third party having control over your fingerprints is admittedly a valid concern. Therefore Nexus imprint is NOT a secure authentication method UNLESS paired with a pin code. I think Two-Factor authentication is required here. We want to make sure that no one has both factors. 1 isn't enough here. They tell us that a PIN is better. Why not a fusion of both? Why cant I do TRUE 2-Factor and do PIN+print unlocks?
My questions to the community are these:
1. Do you really care about this?
2. Is there some sort of built-in way to implement this functionality with Nexus imprint already? I haven't found it yet.
3. Would you be interested in a application or system modification that did this?
It sort of already has a build in workaround. The phone requires pin after boot, so if you are about to be arrested.. shut down the phone.
Also if you use any third party app to lock the device, it needs pin to unlock (e.g. Nova double tap to lock screen).
1. No.
I see imprint as a convenience, not another factor. It improves security for me by allowing me to keep my phone locked with a strong password, without the inconvenience of having to enter it every time I pick up my phone.
A pin/password to unlock and in each app's "App info" settings dialog a switch where you could toggle Imprint/Voice/Face does sound ideal. This way the user is not left hoping the app developer implements these features. My banking app does Face/voice/pin, and I assume they'll eventually add Imprint, but I'd prefer the operating system gave me, the user, this power in much the same way they've given us granular control over some permissions & notification access. This actually seems like the logical next step to Screen Pinning.

Categories

Resources