Hi,
a rather short search (i have to admit) here and in google didn't give me some usefull information about it. Anyone can give me a source for detailed infos about encyption method, algorithm, etc.? Basically I'm interessted if this is really trustworthy or just some proprietary encryption with backdors and everything.
ICS Encryption method for System and SD-Card
Hi
you can't encrypt the sdcard at the moment, because ics doesn't support that.
for the new encryption feature in ics it encrypts your /data partion with dmcrypt-luks essiv:cbc:128 this is the same encryption which is used in all minor linux distrubition for FDE. so i think it's trust worthy. On Linux the difference is that they use as default essiv:cbc:256 so on ICS the encryption isn't that hard, but i think it is still enough. And any why at this encryption the weakest point is you password!
more about dmcrypt und luks can be find in the internet. wikipedia linuxes..
if you wan't encrypted data on a sd card you can install LuksManager and create a container it uses the same technic and creates a encrypted container..
Related
Is there better way to get applications on sd card. Why are we using ext2 ? We can format sd card and partition it without using pc . We can format it into native supported file system of fat. why are need to make dev when in /dev/block device exist ? we need just to modifiee mounted.conf and /etc/fstab
I think because it's easier to say then to do But if you can make it so easy i love to use youre methode! (newest way is pretty easy, flash modded JF rom and exec a script and you are done: http://forum.xda-developers.com/showthread.php?t=480582)
I would think that you could run into issues with permissions/etc if you tried to use a FAT filesystem to store applications.
About the only advantge of FAT is its ubiquity. In every other regard there is a better solution out there. Ext2 is by far the most widely supported linux filesystem that supports the full POSIX feature set.
simply put FAT32/VFAT is a horid horid filesystem, and does not support unix permissions, symlinks, etc.
EXT2 is a native linux filesystem, supports all of the above and has been time tested as stable.
That said it would be slick to get EXT3 (or 4!) support, or even reiserFS support.... journaling FTW
Well, you could just compile the kernel module, but your flash would probably survive a week with journaling... theres a reason you don't use it on flash.
Flash gets worn down by use, and journaling writes every second... So, journaling FTL.
tritron777 said:
Is there better way to get applications on sd card. Why are we using ext2 ? We can format sd card and partition it without using pc . We can format it into native supported file system of fat. why are need to make dev when in /dev/block device exist ? we need just to modifiee mounted.conf and /etc/fstab
Click to expand...
Click to collapse
the phone is linux .. EXT2 is linux .. FAT does not support proper file permissions and if you wanted to try setting something up feel free .. however .. you mention "native" supported file system and that is linux .. storage on the SD comes standard with FAT file system simply because the phone only uses it to store extra files like MP3 and JPG etc .. applications need a higher level of communication that FAT just cannot handle .. that's why Microsoft gave up on it for windows
Hello,
I have a big problem..... This is it:
1. I had my Samsung Note 10.1 and my external SD card encrypted
2. Due to problems with apps I decided to reset the tablet
3. Before the reset, I had to decrypt the Tablet, but i was not told to do the same with the sd card, so I let the sd card enrypted
4. I decrypted the tablet and I did the reset
5. I did start the tablet, I encrypted the tablet again with the SAME password as before
6. But I cannot open the files, I see them in the explorer, but the apps can not open them as they are encrypted.
7. There is also not the posibility in the settings to decrypt the sd-card.
What can I do ?
Thanks
Sorry to hear that, the only way to recover the data on your sdcard is to restore a previous complete backup of your device (cwm backup). This way you restore the encryption master key and you will be able to access the data on your sdcard again. If you haven't got a backup you loose
The master encryption key used is randomly generated at the time of intitial encryption. Decrypting en reencrypting your device will result in using a different master key.
---quote from: http://source.android.com/tech/encryption/android_crypto_implementation.html---
"The master key is a 128 bit number created by reading from /dev/urandom. It is encrypted with a hash of the user password created with the PBKDF2 function from the SSL library. The footer also contains a random salt (also read from /dev/urandom) used to add entropy to the hash from PBKDF2, and prevent rainbow table attacks on the password.
---end quote--
Thanks a lot for your answer. I have already expected that. I thought, that the encryption key being generated is only using the passwort like in the really very well programed software truecrypt. It allows very good security combined with very good usability. It would be much better if the android developers would to the same. I try to suggest that to the android developers.
So now I am going to format my SD card and try to calm done due to the loss of important data :crying:.
Thanks and Happy New Year
Hey folks,
I am thinking of improving security of my HOS and thought of encrypting it. I do know of the encryption feature provided by android but this seems to only encrypt the "internal" storage, namely the /data partition. I'd like to encrypt the sdcard as well but did not find a solution yet.
I had a few ideas on how to achieve this of which one was to use Cryptonite for encryption. This app uses EncFS to encrypt directorys on the fly by mounting the encrypted dir into another dir. I thought it could be used to encrypt the whole sdcard, mount this encrypted content to another dir and tell android to uses this new dir (the encrypted fs mount point) as sdcard (maybe with a symlink). I think I know much about android and linux but at this point I am stuck.
Does anybody have an idea about solving my problem?
Thanks
Max
Ive read this can be done incase your external sd card is stolen or lost where u can passcode encrypt the entire card where if someone trys to view jpgs images or video anything for that matter they get a blank image..
Is this a Computer pc encryption deal or native to being done right from the device or an app.
And are they're any downsides to doing it and being able to view yourself from your device while encrypted
Sent from my SGH-T889 using xda app-developers app
lojak29 said:
Ive read this can be done incase your external sd card is stolen or lost where u can passcode encrypt the entire card where if someone trys to view jpgs images or video anything for that matter they get a blank image..
Is this a Computer pc encryption deal or native to being done right from the device or an app.
And are they're any downsides to doing it and being able to view yourself from your device while encrypted
Sent from my SGH-T889 using xda app-developers app
Click to expand...
Click to collapse
Settings -> Security -> Encrypt External SD Card (and Encrypt Device).
Keep in mind that it's not worth much if your phone is turned on when the attacker steals it. No matter what.
Against the ordinary thief it'll do fine.
Soooo
stealing the phone gives the person 100% access to the SD card? atleast the iphone has the numeric or alphanumeric password feature and 10 mistakes before Wipe.
L1gh7n1ng said:
Keep in mind that it's not worth much if your phone is turned on when the attacker steals it. No matter what.
Against the ordinary thief it'll do fine.
Click to expand...
Click to collapse
Absolutely right. Still looking for a way to lock out federal forces in case my phone gets "arrested". Any ideas or recommendations?
Encryption of external sd... still is supposed to make any file on sd pass code required. .. as in if someone takes the card out tries it in a pc or other phone they'll see black or blank images .
Essentially making it like Iphone proof .
Only thing can be done is a fat 32 format to clear card.
But I havent tried cause I don't wanna take risks of loosing vital info .
As far as the last post about federal people compromising your phone .... well trust me if they get your phone they can hack anything
Sent from my SGH-T889 using xda app-developers app
what you really need is truecrypt.org/
It might be possible to port it to Android and then use it on the SD card.
In fact it appears it has been done here: code.google.com/p/cryptonite/
stupid 10 message posting crap gawd, someone covert those to real links for people.
shaten said:
what you really need is truecrypt.org/
It might be possible to port it to Android and then use it on the SD card.
In fact it appears it has been done here: code.google.com/p/cryptonite/
stupid 10 message posting crap gawd, someone covert those to real links for people.
Click to expand...
Click to collapse
It seems to only encrypt sdcard contents. I'd probably want my /data encrypted as well.
Product F(RED) said:
Settings -> Security -> Encrypt External SD Card (and Encrypt Device).
Click to expand...
Click to collapse
Sorry to ressurect an old thread. But there is no such option for Cyanogenmod cm-12.1 (Lollipop+). is there a way to encrypt the external sd card?
mrplice said:
Sorry to ressurect an old thread. But there is no such option for Cyanogenmod cm-12.1 (Lollipop+). is there a way to encrypt the external sd card?
Click to expand...
Click to collapse
I once hacked me an EncFS-script that mounts an encrypted folder on my sdcard as sdcard0 and the rest of the sdcard as sdcard1. I use it on my phone since more than a year now without any problems:
http://forum.xda-developers.com/htc-sensation/development/mod-encrypt-sdcard-encfs-t3027711
It may run without any changes on your phone, too. Otherwise you only have to change some paths in the script or ask me for help.
bastei said:
I once hacked me an EncFS-script that mounts an encrypted folder on my sdcard as sdcard0 and the rest of the sdcard as sdcard1. I use it on my phone since more than a year now without any problems:
http://forum.xda-developers.com/htc-sensation/development/mod-encrypt-sdcard-encfs-t3027711
It may run without any changes on your phone, too. Otherwise you only have to change some paths in the script or ask me for help.
Click to expand...
Click to collapse
Thanks for the advice. By looking at that thread I see that you are using encFS. What i have in mind is a full partition encryption (just like LUKS, for instance). Do you know if that would be possible?
mrplice said:
Thanks for the advice. By looking at that thread I see that you are using encFS. What i have in mind is a full partition encryption (just like LUKS, for instance). Do you know if that would be possible?
Click to expand...
Click to collapse
I think by "full partition encryption" you mean "encryption of the file system".? Because if you only mean encryption of "all files on the sdcard" - that's what I actually do. I also wrote three points about my decision for EncFS.
You could try to use TrueCrypt in the same way I use EncFS, but with an encrypted partition. Apart from that I'm not aware of any (easy) way to encrypt the file system. Android uses dm-crypt for internal encryption, but I don't know if and how you can use it to encrypt the sdcard.
The latest luks manager (2.5.1) allows you to encrypt external sdcard, which should me mounted on boot or manually and unlike Encfs, no password is stored in plain text. To have a password stored in plain text is no security at all.
optimumpro said:
[..] unlike Encfs, no password is stored in plain text. To have a password stored in plain text is no security at all.
Click to expand...
Click to collapse
Only out of interest:
I wanted to prevent access to the data on my sdcard if I lose my device. The password is stored on encrypted /data, only readable by root. In what way do you consider that "no security at all"?
bastei said:
Only out of interest:
I wanted to prevent access to the data on my sdcard if I lose my device. The password is stored on encrypted /data, only readable by root. In what way do you consider that "no security at all"?
Click to expand...
Click to collapse
In 2 ways: First, a security model that relies on a separate encryption process that is not provided in that model is not secure. What if data partition is not encrypted? Second, you can't rely on permissions only, if permissions alone were enough, we wouldn't need disk encryption at all. Textsecure used to have a glaring security hole: all sms were stored on disk in plain text. Moxie didn't say encrypt your data, he instead fixed the issue.
optimumpro said:
In 2 ways: First, a security model that relies on a separate encryption process that is not provided in that model is not secure. What if data partition is not encrypted? Second, you can't rely on permissions only, if permissions alone were enough, we wouldn't need disk encryption at all.
Click to expand...
Click to collapse
Funnily enough Android M is saving the encryption key for adopted storage in the exact same way as I did it for my Enfs-folder.
bastei said:
Funnily enough Android M is saving the encryption key for adopted storage in the exact same way as I did it for my Enfs-folder.
Click to expand...
Click to collapse
You still remember? I meant no offence.
Adopted storage: even if this is true, it is still OK, because I don't think you can encrypt adopted storage without encrypting data partition. In other words, there is no way in M the encryption key could be read without first decrypting data. In your case, it is possible, since encrypting SD is independent from encrypting internal data partition. But if I were Google, I would still not save the encryption key in plain...
I am a newbie at fone hacking.
I put a new Kingston 128G SD card in my Moto E40 phone. Android (v11) offered to help me by moving my pictures to the empty SD card and freeing up internal memory. Great.
Except then the SD card died - it is not visible (doesn't mount) in the phone or in my PC - I assume that it's fried ?
Can I retrieve my deleted photos from the internal memory of Android after it has deleted them ?
And, is there any way to resurrect the SD card ?
Please and thanks for any help... Ray
SilverCraftRay said:
...
Can I retrieve my deleted photos from the internal memory of Android after it has deleted them ?
...
Click to expand...
Click to collapse
If phone is succesfully got paired with PC ( read: ADB connection ), if phone's Android got successfully rooted, if phone's internal storage where photos are stored by default isn't got encrypted and isn't got overwritten by new data, then it's theoretically possible to retrieve the deleted photos.
If I use Magisk to get root access, the tutorial says that it will wipe my data.
How would I get my files back if the rooting process wipes my data ?
Can I root my phone without losing all it's data ?
Noone needs Magisk to root a phone's Android: that's a nurse fairy tale.
To root Android all you have to do is to create a copy of SU-binary in Android's filesystem and make it executable. After that you can run all Linux commands alike
mount and dd etc.pp. as ROOT.
Example - using ADB
Code:
adb devices
adb push <LOCATION-OF-SUITABLE-SU-BINARY-ON-PC-HERE> /data/local/tmp/
adb shell "cd /data/local/tmp & chmod 2776 su"
what will 1. connect the Android device to your desktop computer and 2. upload the su binary in the Android device temporary directory always available for the user.
Thanks. adb is very powerful.
Where can I find the suitable SU-binary for this phone? Is it in another system directory on the phone? Or in the internet based on my particular phone?
Once it is pushed, will my phone tools use it automatically? It seems that su is a manual command. Or will it be found automatically since it is in the /data/local/tmp directory ?
you can't root Android 5+ like that. the only nurse fairy tale is post #4 as discussed here.
even with root access it's impossible to recover deleted files from FBE file-based encryption (which is enforced on devices shipped Android 10+)
you can try to recover files from Kingston MicroSD Card with card reader on PC
https://www.z-a-recovery.com
Wrong
FBE ( what is significantly more insecure than FDE ) was introduced with Android 7 ( read: Nougat ) in August 2016.
Having elevated rights ( AKA SU ) you can dd a phone's internal memory via ADB to PC.
BTW: The FBE key of a file is stored directly in the ext4 file-system "dentry" of each file.
"For new devices running Android 10 and higher, file-based encryption is required."
(that means if device shipped on Android 9 it may receive update to Android 10 but is still running FDE btw)
while on FDE the DEK is ciphered with TEE static master key, FBE encryption keys are ciphered with random generated DEK in TEE keystore (which is flushed on factory reset). what you see in file metadata is KEK + DEK ciphered per-file-key (hash), where KEK is ciphered with lock screen credentials.
each files metadata is deleted when file is deleted, so the key is gone forever. as of the nature of encryption, file carving methods cannot understand what's left on disk and cannot restore any deleted files.
Now imagine, FBI forensics do a full dump of disk and find a method to magically restore each single byte of inode + dentry (for one single file), still they cannot decrypt that file without DEK.
FDE is encrypted with default_password without any lock screen pin at all (even if you set pin), which is common for most devices. that allows to bypass screen lock (impossible on FBE).
further the whole block partition is decrypted at once, so undeleting files (at least on ext4) is (in theory) possible.
if userdata and crypto-footer is dumped off the phone, that backup (on PC) will even survive factory reset, it can be restored afterwards and still it's possible to decrypt (online), as the static master key is burned to chip.
if one of the encryption methods is significantly more insecure then it's clearly FDE. to overcome this one should enable Secure Start-up.
btw modern devices (like OnePlus) combine both encryption methods FBE + FDE = metadata encryption (devices launched with Android 11+)
This intellectual outpouring is all well and good, but it completely misses the point: this thread is about data recovery from internal storage memory, OP was: "Can I retrieve my deleted photos from the internal memory of Android after it has deleted them ?". The answer is YES: retrieve and restore are different operations!
FYI: I know the difference between FBE and FDE, know how to lever out both locks.
the answer is NO. Moto E40 uses metadata encryption.
jwoegerbauer said:
FYI: I know the difference between FBE and FDE, know how to lever out both locks.
Click to expand...
Click to collapse
Obviously you don't.
I pay you 100 € if you show any proof. just rm a file and try to recover on FBE encrypted flash storage.
or explain in what way retrieving of deleted files differs from restore?
wait... so you're the same guy who don't understand how SUID bit works and still claim we can place "suitable" SU-binary in /data/local/tmp?
well we shouldn't expect any proof then lol