I recently found DojoCrypt a utility that will activate the native OS based encryption on WM 6.1 and later devices without the need for a server & server push or the use of third party software.
According to msdn article bb964600 the following files/folders are encrypted by default.
User documents: \My Documents
Sync email: \cemail.vol
PIM data: \pim.vol
Sync email stream properties: \windows\messaging
Sync email attachments: \windows\messaging\attachments
Temporary internet cache: \windows\profiles\guest\Temporary Internet Files​
It will also allow you to specify exclusions & inclusions.
I spent a lot of time searching for something like this that was affordable (free in this case) & didn't overly affect device performance* & thought others might want to know about this tool.
My Question: Can anyone speak to the quality of security provided by MS's implementation of the encryption. It uses AES-128 but I'm not asking about the quality of AES-128 rather the implementation of security on the WM device.
Thank you for any info or pointers to other resources.
Ed
*In the past I used the long defunct "PDA defense" on my old PPC 2003 and then Utimaco (now sophos) Safeguard PDA on my Tytn & Tytn2 and both seriously degraded performance & stability .
it's good enough so people who have to reset or flash roms always lose
all their encrypted data
it should only ever be used when the data having to be secret is more important then the data itself
Hi, I study how to break the evil app sending SMS, I found the LBE_Privacy_Guard v1.1.1090 already work out it , I guess it used injectso to hook the android system's api (need root), but I failed when I try to inject so in android platform(arm platform), is any one could give me some information and documents? or analyse how does it works, thanks.
My situation:
In my company we have about 30+ handsets currently running Android (standard and custom ROMs from XDA). The handsets include HTC Desire HD, HD2, Desire S and Desire Z. The users cannot be trusted not to brick the phones if they are allowed to download apps and modify them in anyway (not to mention they are business phones so shouldn't have facebook etc on them any way).
I've heard about admin tools which allow control of handsets remotely.
Requirements:
So, if possible, what i would like does something along the lines of...:
1: Blocks further apps from being added to the handset without a password
2: A lock to keep as many of the settings as is originally provided (wallpaper etc)
3: A master admin tool which i can remotely manage all the handsets from (download requested and approved apps, wipe, lock, locate and reset the phones if lost...etc)
What i have done before to stop the users adding further apps is register my email address to Android Market on all the phones, then changed the password using my desktop). While this stops new apps from being downloaded from the market, it does mean i cannot remotely roll out approved apps as they are no longer signed in to the account.
Is there anything out there which does any/all/some of the above?
Is there one tool which can manage all these tasks? Or will it have to be seperate apps like Norton Mobile Security (such as) etc?
Can anyone get their heads around this?
Thanks!
The market lets you download apps to a phone.
Lookout Security does all of the security tasks you want.
Thanks, that would take care of the remote wiping, locating and locking.
Does Android provide any corporate setup for administration of lots of handsets? Surely this is a niche in the market for some devs to jump on if there isn't something like that already.
And i know Android Market allows you to remotely download apps to multiple phones but i want to make it impossible to download through the phone itself. (so i can add apps but the user can't)
Something that performs like MFormation Enterprise Manager but avoiding the $20k price tag! (a tall order i know)
Sonic_Sonar said:
Something that performs like MFormation Enterprise Manager but avoiding the $20k price tag! (a tall order i know)
Click to expand...
Click to collapse
Hello,
Have you found any apps that fit your needs? Do you use them? If no, is your organization still interesting in mobile device management service?
I'm asking because I'm working for http://bloove.com (personal phone management service) and we're going to expand our offer to small and medium companies.
This new service will combine existing contact, sms, phone log and bookmark backup for personal phone with MDM features like centralized app management, location and wipe service etc.
We're looking for early adopters who will have a chance to add their custom requirements to the service and get this service for free for up to six months.
Please let me know if you're interested and want to discuss this further.
Thank you,
Rostislav
[email protected]
Please use the Q&A Forum for questions Thanks
Moving to Q&A
I did something like this ...
I first installed openssh server, plus a script that checks a specific URL for remote access needs (had to do it that way since my carrier blocks connections on all ports).
The server side is a simple php script that you call like this: check.php?deviceid=[ID]. The script checks a DB to see if there is anything new for that device ID and acts accordingly. I implemented three features: Tunnel, Script, Install APK. So, If I want to install an APK to all devices, I just upload it on our webserver, and on the MySQL DB I add devices id = all, action=install, file=/apks/whatever.apk. If, for instance, I want to do something more complex on certain devices, I add: id = all, action=script, file=/apks/whatever.sh. I write the script, then all phones check for updates on this check.php every 5 minutes, if they find a script, they'll download and execute. If it's an APK, they'll download and install. If I insert a line with deviceID=[deviceid], action=tunnel, file=[PORT NUMBER], then the phone will SSH into a remote server and do a reverse port forward, on [PORT NUMBER]. Then I can just SSH into localhost:[PORTNUMBER] on the server, and I'll have a terminal inside the phone to do whatever I need.
This doesn't address the restrictions issue, but it does allow you to control the phones however you want.
Regards,
Almafuerte.
"I wish I could say that I'd anticipated this possibility in advance
and created a fake password that unlocked a completely
innocuous partition on my phone, but I wasn't nearly that
paranoid/clever." (c) Cory Doctorow
Thats clever indeed.
I'm sure no mobile OS has been having that back to 2007 - certain plousible deniability solution for mobile devices.
Yet there is no apps with that kind of functionalities on the market.
Aslo while searching I discovered one interesting work which would solve storage side matters:
users.encs.concordia.ca/~mmannan/student-resources/Thesis-MASc-Skillen-2013.pdf
I'm not a developer and I have no clue how to:
- split and store user profiles on differect partitions
- be able to decrypt one of those on demand and allow user to login into desired one depending on the pattern / pin has been entered
Are you guys aware of any an existing solutions for Android?
Thank you!
Looking for a note taking app that encrypts it's contents but with cross platform access (e.g. Linux or Windows).
It can either have clients for Android, Linux and Windows or it just encrypts notes and saves them as text files which can be read easily on other platforms.
Any suggestions?
Hmm, i still have this problem myself as i hate putting personal data online.
I've been searching for a simple solution for quite some time and yet nothing optimal arised.
I have 2 approaches to this problem:
1 The simple way:
Use a cross platform password manager which has the ability to store notes like:
StickyPassword, SafeInCloud , etc ...
Do this if you can trust them and beleve their claims.... :laugh:
2 The hard(core) / paranoid / scratch your head with your foot way:
a) Find an android note taking app that saves regular text files eg: Jota
b) Use GnuPG (pgp) on your desktop and OpenKeychain on android to encrypt/decrypt your txt files
c) Use your favorite cloud storage provider client to sync your encrypted txt files
This solution has so many many things to overcome
- Setting this up is not as easy as my bullet points
- Maybe some steps can be automated
- Data (text files) on your devices is stored in plaintext and duplicated in encrypted form which poses some risks when you loose control over your devices (stolen/lost) this can be solved by using full disk encryption and/or deleting the plain text files after encryption
Sorry for may bad english & for being a bit elusive