Is there any security measure on iodé/Brax3 that will wipe the phone after too many tries to unlock with the PIN?
Apple has lockdown mode, which is supposed to prevent device connections:
“Device connections: To connect your iPhone or iPad to an accessory or another computer, the device needs to be unlocked. To connect your Mac laptop with Apple silicon to an accessory, your Mac needs to be unlocked and you need to provide explicit approval.
Wireless connectivity: Your device won’t automatically join non-secure Wi-Fi networks and will disconnect from a non-secure Wi-Fi network when you turn on Lockdown Mode. 2G and 3G cellular support is turned off for iPhone and iPad.
Configuration profiles: Configuration profiles can’t be installed, and the device can’t be enrolled in Mobile Device Management or device supervision while in Lockdown Mode.”
is there the possibility of achieving something similar with Iodé on Brax3?
Someone had asked this in the past and I remember Plamen had said something along the line that the wiping needs permissions that Android can’t have at least before it’s unlocked.
It’s probably possible for a rooted device with appropriate modifications, it should be a big hassle to achieve it.
Concerning the lockdown you certainly need to unlock Android in order to approve connections to a computer and to other pairing devices.
I think it doesn’t connect to the WiFi if it’s locked and the same goes for the cellular network.You can test all those.
I wonder if there’s at least a delay for entering the PIN after x amount of wrong entries…
I’ve read the thread about border security and the consensus seems to be just don’t have data on your phone, or setup nextcloud (which I wish Iodé would offer as a service like Murena does). Not having any data makes sense, but these are smartphones and not minimalist devices, so having some things on your phone for relative convenience is not unreasonable I don’t think. Some of us have to utilize this tech for modern living purposes and don’t have the luxury that retired wealthy people have.
Rob has made several videos and lives on those topics.
The PIN gradually increases the interval and can’t be brute forced even for a 4-digit. We have also proposed a mechanism of providing all the locks on the lockscreen so that someone starts by not even knowing what lock you have used and further may even multiple locks can be programmed.
Something that is still unknown is that the governments allegedly can break into by deploying a USB device that can brute force the lock and Graphene claims to have mitigated for that but doesn’t reveal the secret. Rob reckons that we should have the USB deactivated before unlocking.
The scheme of the empty phone has the purpose of letting you go through some checkpoint unnoticed and don’t have to confront the law enforcement denying to give your PIN, in many cases this could result to your inability to enter the country and being a continuous target.
Uploading your crucial data encrypted to some free service like Mediafire should be enough.
Someone stealing your phone wouldn’t be able to unlock it.
In the case of law enforcement the wiping mechanism would help you to enter your PIN incorrectly on purpose to delete the data but then it would raise concerns.
Other mechanisms that they could deploy like backdoors can’t be prevented.
I just tried the wrong PIN a few times and saw that it times out.
I’ve seen most of Rob’s videos too. There’s one at least where he says he doesn’t have much of anything on the phone, so even if it is opened somehow there’s essentially nothing to see. I’m trying to do that as best I can, but there’s data I don’t want thieves getting if I can reasonably prevent it.
As far as border crossing, I’ll have to look like into the cloud thing. It’s much easier on Apple, you can factory reset and everything is backed up if you use icloud. I wish there was something for those of us who aren’t coders or programmers to easily have the phone backed up privately with encryption like I mentioned.