Hi there
I am just finding my way around WM6 on my new Orbit 2. I haven't decided whether to use the file encryption feature yet. What I WOULD like to set up is the auto-wipe feature if you enter the wrong PIN number more than a specified number of times.
I gather from posts that the default number of times for wrong PIN entry is seven. I think this is too much and would like to change it to three wrong PIN entries. I figure that if the PDA gets lost/stolen then whoever has it might decide after a couple of PIN try-outs to remove the MicroSD card before the 'wipe' feature has kicked in. Also, I am presuming that everything gets wiped - internal data and storage card?
Does anyone know how I can change the setting? I get the impression that it's possible but can't see any user-setting on my Orbit, or any posts answering this question. If there is no way to change it does anyone have any recommendations for a third party utility that would do this?
Also, I am undecided about using the encryption feature - not sure of the implications for speed and backing up etc. Has anyone any thoughts about this? I wonder if it might be best to only turn it on AFTER you have installed programs etc... in other words, turn it on when I start to save my data and personal files.
As a 'related' question - does anyone have any thoughts or info about the security of your "Contacts" when running WM6? I have never fathomed out where exactly they are stored and how you can secure them if the device gets lost/stolen. I reckon that my Contacts data is actually one of the most valuable and private things I keep on my PDA and would hate the Contacts info falling into the wrong hands, with all my friends' phone numbers and addresses etc at potential risk
Many thanks to one and all for anything that might come my way as a result of this posting. Kiss kiss.
OrangeSpiv
Related
I want my device to locally wipe all data in case an incorrect password is entered more than 3 times. That is the ultimate in security, because many times the sim is removed and there is no GSM or Internet so remotely control it if stolen. So a local solution is required for business people who do not have or need exchange or remote access. Just want that when their device is stolen it is wiped locally.
I came across several places on the net that tells you that it's possible by simply putting a new Decimal Key named 'DeviceWipeThreshold' (HKLM\Comm\Security\Policy\LASSD) and set it to a positive number like 3 or 4 that means after these attemps the device main memory and memory card are wiped.
It works fine. My only problem is that it prompts the user for the last chance to enter the correct password before it wipes the device. I do not wish that prompt to appear, cause once stolen and password tries exceed 3 or 4 times i want to wipe the info WITHOUT a warning. Does anybody know if there is a registry tweak to remove that warning or change the text of of it ?
I couldn't find a real through document on all the registry policy tweaks.
Hi guys, im fairly new to the WM scene, but have finally customized my Xperia X1 to be just how I want it.
This brings me to this question about security.
At the moment what worries me, is if I lose my phone or someone steals it. They would have access to all my information, my contacts, my software, my emails, passwords and other such personal information that I would rather not give out. Obviously the safest solution would be to leave it in the house, but that's something none of us want to do!
Now I was thinking about encrypting the Internal memory and the memory card so that the files could not be hacked or looked at by prying eyes when connected to a computer for instance. But I couldn't seem to find any software which would do such a thing. I currently use TrueCrypt on my PC which stops nearly everything.
What I really want to do is the following:
1. Password the device.
2. Encrypt it, so that the files cannot be taken off or read.
3. Automatic password lock after 1 minute.
4. Stop files being accessed through a PC (by others of course but not myself).
5. Any other methods people could access the phone with a computer, flashing and such tools to get into them.
I know the memory card has encryption to stop anything other than the device reading the card. But this doesn't work on mine for some reason as I can plonk the card in a reader and get access to all my files in various computers I have tried.
I realize it will never be truly secure but let's be honest. The average thief wouldn't exactly know how to hack into a phone and access it's files.
Now im not fussed if say for instance it was stolen, the thief flashed the phone and used it for themselves. At the end of the day, they've got the phone, wether they are using it or not isn't going to make a difference, but making sure they can't access the files is a top priority.
One of the main programs I worry about is these "Wallet" programs that you can get. They are very handy for storing all your card details and such on, but are they truly safe? That is what I wonder.
Any replies would be really appreciated as I always worry about losing my phone at the moment due to it having no protection!
Are there any suggestions anyone can make to me?
Anyone got an opinons on this? I was hoping for a reply.
Hi vmrmic,
I know that Check Point has a encryption solution for Windows mobile since I work there
http://www.checkpoint.com/products/datasecurity/mobile/index.html
Check supported devices:
www.checkpoint.com/supportedhandhelds
X1 is not up there but it works fine. I have tried it. Officially supported in a couple of weeks
Note that this solution is intended for business and not a one by one installation
If you have more questions find the forum on checkpoint.com since I don't always check this forums.
Regards
Check out Throttle Lock http://www.throttlelauncher.com/portal/
Not every thing your asking for but a great solution
TB
Hi guys.
Try to decide which to get between these two. It looks quite similar in what they do? Which one would you prefer? Don't matter the cost..they're just worth paying for. Which is better for non rooted phone?
anyone at all?
Never heard of the 2nd one but I am looking for a replacement for wavesecure
The only difference i can see between cerberus and TA is that cerberus can take photo. Apart from that, anything else guys?
Theft Aware saved my phone, Cerberus... hmmphh
[UPDATE] Tested "in the field"
Yesterday night I came to a friend's party and couldn't find my phone, so first thing I tried to dial it and see where I forgot it- went to check the car, but the phone wasn't there. The strange thing was that I was directed immediately to the voicemail, as if my phone was powered off..
Then I noticed my wife's phone has got an sms from Theft Aware, that the sim was replaced with a new number (including the new number). I called the new number, and got no answer but was able (via sms command) to get the phone's location, then I sent an sms to the new owner that I'd like to have the phone back and a number where I can be reached, then locked the phone.
At the same time I tried to operate similar thing with cerberus via their android client which is easy to operate. Nothing happened.
I tried again to call the new owner- he answered- told him I've got his phone number, location and photo (this was a bluff because cerberus did not work). The new owner was so surprised that he immediately offered to bring it back, which he did. I got my phone back after barely 30 minutes.
When the phone was back I checked my mailbox, and noticed that I got a mail from cerberus:
IP address: 109.64.199.59
An unauthorized SIM card has been inserted into your device.
Number: null
Network
Operator: 42502 ()
Subscriber ID: null
SIM card
Operator: ()
Serial: null
This is an automated message, please do not reply.
Nothing really useful...
Cerberus app did take a photograph, though, but it showed my own face back at home- the photo was taken only AFTER I have entered my unlock pattern, so it was no real use.
So, when really needed Theft Aware vs. cerberus: 1-0.
Nowadays Theft Aware is free, bundled with Avast! antivirus and some other bla bla (which can be manually uninstalled), so I just can't see no reason whatsoever why not install this useful program. Within minutes, all Android phone owners in the party started looking for Avast's TA and iphoners started looking for something similar for their own kind
You can probably disregard all the BS I wrote before (below), but whatever...
[OLD][BS]
TA is only sms-based. Perhaps they are working on some web-interface but not sure where it stands (beta stage?).
With Cerberus it is possible to send commands from their website and from a small applet/client (e.g. you can install it in a friend's phone) that is very useful if you don't have a computer nearby. Cerberus can also trigger the cameras, record audio, splash a message+speech in full screen ("Hey, thief! Bring it back") etc. Cool, perhaps also useful.
TA can be installed as system app, and with a name of your choosing to add further "security".
Cerberus installs as user app, but it is possible to download from their website a zip file that can be flashed as system app (or installed via ROM Manager) but not sure how many users are aware of this option. Anyway, it will still show as "cerberus" in lots of places, so it cannot be considered as stealthy as TA.
Both have many disadvantages- if the thief has access to the phone (some people don't use any pin/pattern lock, eh???) then he can deactivate TA or Cerberus from the list of device administrators and in a few seconds rendering both of them useless.
Both won't survive the flashing of a new rom, but I doubt that most "casual thieves" will go away to flash a rom in a stolen phone.
Some other sms applications using notification may override TA. That's what happens with GO SMS, for example- GO SMS will display the sms with code and everything, and TA won't work at all. There are workarounds, but it is an annoyance.
Major disadvantage of TA is the same code used to enter the application is also the one used in SMS commands! The dev is well aware of this issue but thinks it is too much for a user to remember two different codes (one for entering app, second to confirm sms commands). Thus, a thief can just get the sim out of your stolen and put it in any other phone. Then, when you start sending sms with commands to your stolen phone, you'll be actually providing the thief with your unlocking code... Next he turns on the stolen phone (with whatever sim- original or one of his choice), unlock it with the code you've just sent him by sms.. It's THAT easy. I am not sure how cerberus will act, in a similar case.
Hello everyone.
After getting my phone stolen I did a lot of research on the right procedure to prepare an Android for future eventual situations like this one.
I came to the conclusion that it´s better to separate some functions into different accounts. Long story short: one for your data and one for the phone management.
Once the phone is out of reach, one should quickly change the password for the data account, preventing other users to play with it.
However, the phone management account should remain intact so communication with the phone is still possible. This includes un/installing apps, mirroring the actions performed by the phone (calls, SMs, photos...) so you can collect enough data to recover it.
However, the problem comes with this account stating invisible or unremovable by the new user. Any decent thief will delete all the accounts or do a factory reset, de facto dismantling all the data collection strategy.
I have only found one conversation about how to make an account unremovable (on StackOverflow.com) and it was said that it´s not possible unless it´s implemented on firmware level.
I am thinking something along the lines of a "one time wizard" where the original user after flashing the custom ROM enters the data of the account and this can never be changed again (for obvious security reasons) unless re-flashing.
Of course it´s obvious any thief can flash the phone with any other custom ROM but so far I don´t thing they are into that. I would bet they just feel like a Factory Reset is more than enough.
Hence the question:
How difficult would that be to implement?
Cheers,
Jean
PD: This is my first post in these forums. I hope I am using the right one; otherwise someone let me know and point me to the appropriate one.
Hey there, I am sorta new to this forum, one of my friends suggested it to me, and I was wondering about making my device extremely secure. I was thinking about having it so that way USB data transfer is completely disabled, and having it so that way when ever it is off my data is encrypted automatically.
Just because I dont think I am making this clear:
-When turned off everything is encrypted.
-When turned on, goes to a bootloader which ask for a pin which then decrypts and allows apps or another system to run in its place.
-USB data transfer disabled, to the point where unless I go to my settings or whatever no data whatsoever can be taken or moved.
-I want to make my Tablet so secure that if people want to get inside and look at my data, they have to take it apart, and have to bruteforce the hard disk if they want to view it.
Thanks for reading my low quality post,
and thanks in advanced for replying.