Does anyone have any ideas on how i can figure out exactly what occurs when you disable the storage card encryption? I would like to disable it on the fly without a hard reboot of my device. I notice if i disable it in settings and click ok it decrypts right then. If i change the reg key i would have to reboot device. Any ideas would be appreciated.
thanks
Ive read this can be done incase your external sd card is stolen or lost where u can passcode encrypt the entire card where if someone trys to view jpgs images or video anything for that matter they get a blank image..
Is this a Computer pc encryption deal or native to being done right from the device or an app.
And are they're any downsides to doing it and being able to view yourself from your device while encrypted
Sent from my SGH-T889 using xda app-developers app
lojak29 said:
Ive read this can be done incase your external sd card is stolen or lost where u can passcode encrypt the entire card where if someone trys to view jpgs images or video anything for that matter they get a blank image..
Is this a Computer pc encryption deal or native to being done right from the device or an app.
And are they're any downsides to doing it and being able to view yourself from your device while encrypted
Sent from my SGH-T889 using xda app-developers app
Click to expand...
Click to collapse
Settings -> Security -> Encrypt External SD Card (and Encrypt Device).
Keep in mind that it's not worth much if your phone is turned on when the attacker steals it. No matter what.
Against the ordinary thief it'll do fine.
Soooo
stealing the phone gives the person 100% access to the SD card? atleast the iphone has the numeric or alphanumeric password feature and 10 mistakes before Wipe.
L1gh7n1ng said:
Keep in mind that it's not worth much if your phone is turned on when the attacker steals it. No matter what.
Against the ordinary thief it'll do fine.
Click to expand...
Click to collapse
Absolutely right. Still looking for a way to lock out federal forces in case my phone gets "arrested". Any ideas or recommendations?
Encryption of external sd... still is supposed to make any file on sd pass code required. .. as in if someone takes the card out tries it in a pc or other phone they'll see black or blank images .
Essentially making it like Iphone proof .
Only thing can be done is a fat 32 format to clear card.
But I havent tried cause I don't wanna take risks of loosing vital info .
As far as the last post about federal people compromising your phone .... well trust me if they get your phone they can hack anything
Sent from my SGH-T889 using xda app-developers app
what you really need is truecrypt.org/
It might be possible to port it to Android and then use it on the SD card.
In fact it appears it has been done here: code.google.com/p/cryptonite/
stupid 10 message posting crap gawd, someone covert those to real links for people.
shaten said:
what you really need is truecrypt.org/
It might be possible to port it to Android and then use it on the SD card.
In fact it appears it has been done here: code.google.com/p/cryptonite/
stupid 10 message posting crap gawd, someone covert those to real links for people.
Click to expand...
Click to collapse
It seems to only encrypt sdcard contents. I'd probably want my /data encrypted as well.
Product F(RED) said:
Settings -> Security -> Encrypt External SD Card (and Encrypt Device).
Click to expand...
Click to collapse
Sorry to ressurect an old thread. But there is no such option for Cyanogenmod cm-12.1 (Lollipop+). is there a way to encrypt the external sd card?
mrplice said:
Sorry to ressurect an old thread. But there is no such option for Cyanogenmod cm-12.1 (Lollipop+). is there a way to encrypt the external sd card?
Click to expand...
Click to collapse
I once hacked me an EncFS-script that mounts an encrypted folder on my sdcard as sdcard0 and the rest of the sdcard as sdcard1. I use it on my phone since more than a year now without any problems:
http://forum.xda-developers.com/htc-sensation/development/mod-encrypt-sdcard-encfs-t3027711
It may run without any changes on your phone, too. Otherwise you only have to change some paths in the script or ask me for help.
bastei said:
I once hacked me an EncFS-script that mounts an encrypted folder on my sdcard as sdcard0 and the rest of the sdcard as sdcard1. I use it on my phone since more than a year now without any problems:
http://forum.xda-developers.com/htc-sensation/development/mod-encrypt-sdcard-encfs-t3027711
It may run without any changes on your phone, too. Otherwise you only have to change some paths in the script or ask me for help.
Click to expand...
Click to collapse
Thanks for the advice. By looking at that thread I see that you are using encFS. What i have in mind is a full partition encryption (just like LUKS, for instance). Do you know if that would be possible?
mrplice said:
Thanks for the advice. By looking at that thread I see that you are using encFS. What i have in mind is a full partition encryption (just like LUKS, for instance). Do you know if that would be possible?
Click to expand...
Click to collapse
I think by "full partition encryption" you mean "encryption of the file system".? Because if you only mean encryption of "all files on the sdcard" - that's what I actually do. I also wrote three points about my decision for EncFS.
You could try to use TrueCrypt in the same way I use EncFS, but with an encrypted partition. Apart from that I'm not aware of any (easy) way to encrypt the file system. Android uses dm-crypt for internal encryption, but I don't know if and how you can use it to encrypt the sdcard.
The latest luks manager (2.5.1) allows you to encrypt external sdcard, which should me mounted on boot or manually and unlike Encfs, no password is stored in plain text. To have a password stored in plain text is no security at all.
optimumpro said:
[..] unlike Encfs, no password is stored in plain text. To have a password stored in plain text is no security at all.
Click to expand...
Click to collapse
Only out of interest:
I wanted to prevent access to the data on my sdcard if I lose my device. The password is stored on encrypted /data, only readable by root. In what way do you consider that "no security at all"?
bastei said:
Only out of interest:
I wanted to prevent access to the data on my sdcard if I lose my device. The password is stored on encrypted /data, only readable by root. In what way do you consider that "no security at all"?
Click to expand...
Click to collapse
In 2 ways: First, a security model that relies on a separate encryption process that is not provided in that model is not secure. What if data partition is not encrypted? Second, you can't rely on permissions only, if permissions alone were enough, we wouldn't need disk encryption at all. Textsecure used to have a glaring security hole: all sms were stored on disk in plain text. Moxie didn't say encrypt your data, he instead fixed the issue.
optimumpro said:
In 2 ways: First, a security model that relies on a separate encryption process that is not provided in that model is not secure. What if data partition is not encrypted? Second, you can't rely on permissions only, if permissions alone were enough, we wouldn't need disk encryption at all.
Click to expand...
Click to collapse
Funnily enough Android M is saving the encryption key for adopted storage in the exact same way as I did it for my Enfs-folder.
bastei said:
Funnily enough Android M is saving the encryption key for adopted storage in the exact same way as I did it for my Enfs-folder.
Click to expand...
Click to collapse
You still remember? I meant no offence.
Adopted storage: even if this is true, it is still OK, because I don't think you can encrypt adopted storage without encrypting data partition. In other words, there is no way in M the encryption key could be read without first decrypting data. In your case, it is possible, since encrypting SD is independent from encrypting internal data partition. But if I were Google, I would still not save the encryption key in plain...
Hey everyone,
I am wanting to encrypt my D6616. So, a couple of questions:
If I encrypt the phone without the SD card, can I encrypt the SD card later?
If I encrypt the device, can I decrypt it?
Lastly, if you know your PIN, can you recover from a factory reset on your SD card?
Thanks everyone,
Johnathan
johnathanamber said:
Hey everyone,
I am wanting to encrypt my D6616. So, a couple of questions:
If I encrypt the phone without the SD card, can I encrypt the SD card later?
If I encrypt the device, can I decrypt it?
Lastly, if you know your PIN, can you recover from a factory reset on your SD card?
Thanks everyone,
Johnathan
Click to expand...
Click to collapse
1. I am pretty sure, Yes
2. Yes, but during startup, so it would pay to copy the contents to a computer if you wish to remove encryption. then you have to factory reset.
If you go through the process, it will advise you just prior to starting the encryption
@danw_oz,
Thanks for the reply.
I assume that decrypting wouldn't require any external intervention... i.e. there are menu prompts under Security that will do it as opposed to using the shell, etc.
Thanks again,
Johnathan
johnathanamber said:
@danw_oz,
Thanks for the reply.
I assume that decrypting wouldn't require any external intervention... i.e. there are menu prompts under Security that will do it as opposed to using the shell, etc.
Thanks again,
Johnathan
Click to expand...
Click to collapse
Have a read of this http://www.howtogeek.com/141953/how-to-encrypt-your-android-phone-and-why-you-might-want-to/
danw_oz said:
Have a read of this http://www.howtogeek.com/141953/how-to-encrypt-your-android-phone-and-why-you-might-want-to/
Click to expand...
Click to collapse
@danw_oz,
According to the article you've provided, there is no decryption, unlike what you've informed:
"Encryption is One-Way Only: After encrypting your device’s storage, you can only disable encryption by resetting your phone to its factory default settings. This will also erase all the data stored on your phone, so you’ll have to set it up from scratch."
If your Z3/Z3C is encrypted... do you have a decrypt option now?
Thanks.
Johnathan
Evidently the process isn't reversible... at least during the encryption process, it informs before confirming that it is irreversible.
Thanks for the help,
Johnathan
johnathanamber said:
Evidently the process isn't reversible... at least during the encryption process, it informs before confirming that it is irreversible.
Thanks for the help,
Johnathan
Click to expand...
Click to collapse
The decryption occurs during entering of your pin or password, at which time you would need to copy anything you want to keep off the phone onto a computer.
---------- Post added at 03:07 PM ---------- Previous post was at 03:02 PM ----------
To be honest there is no real benefit of this over just locking your phone, because if you loose your phone it can still be hacked until it is rebooted. If you have find my xperia, you can erase the phone which I am sure includes the SD Card
danw_oz said:
The decryption occurs during entering of your pin or password, at which time you would need to copy anything you want to keep off the phone onto a computer.
Click to expand...
Click to collapse
I understand your reply. The data has to be decrypted before it can be used by the phone and other apps, etc, this only makes logical sense to use decrypted data. since it can't used encrypted data.
I suppose I should have been more clear in my original posting. Once a phone has been encrypted, can the encryption be removed to use the data in its decrypted form? i.e. if I encrypt my SD card, decrypt it, remove it, then place it elsewhere to be used in other devices... the answer is no. Once encrypted, the encryption can't be removed to allow the card to be used elsewhere.... without losing all of the data.
Sorry for the miscommunication.
Thanks,
Johnathan
Do Samsung devices come with encryption or should you activate it manually?
I've been searching for a option to do this but the only setting that I found was to encrypt the SD card.
Help
Vr8 said:
Do Samsung devices come with encryption or should you activate it manually?
I've been searching for a option to do this but the only setting that I found was to encrypt the SD card.
Help
Click to expand...
Click to collapse
Data is already encrypted by default since Marshmallow.
I had been having issues with my Z5's wifi and bluetooth not working for a long time, after troubleshooting all I could decided to factory reset the phone to see if that would fix it. It didn't, but I've also lost access to the encrypted files that were on the SD card. Android 7 uses file-based encryption so I can see them but they're unreadable. After some googling I tired the "Backup SD Card > Format SD Card > Encrypt with same passcode > Copy files back over" trick without success. I have access to the old phone, I know the pin, and I have the encrypted files. If there anything I can do here to decrypt those files? Information on exactly how android nougat derives the encryption key is hard to find. I'm guessing it's a combination of the PIN and some environmental data like the serial #.