Hi there..
I'm trying ti understand device encryption before i install a custom ROM on my poco. (Any links explaining how encryption works on android would be greatly appreciated)
My first question is whether the pocophone encryption is turned on by default.
Under the encryption settings, the "encrypt device using lock screen password" slider is set to off.
However, every time I reboot the phone, i am forced to enter the lock screen password as fingerprint and facial recognition do not work. I assumed that this is because encryption had been enabled on my phone by default. But then why is the slider set to off?
mahela007 said:
Hi there..
I'm trying ti understand device encryption before i install a custom ROM on my poco. (Any links explaining how encryption works on android would be greatly appreciated)
My first question is whether the pocophone encryption is turned on by default.
Under the encryption settings, the "encrypt device using lock screen password" slider is set to off.
However, every time I reboot the phone, i am forced to enter the lock screen password as fingerprint and facial recognition do not work. I assumed that this is because encryption had been enabled on my phone by default. But then why is the slider set to off?
Click to expand...
Click to collapse
The option that you are talking about under encryption settings, is the same as "Android secure start up" on AOSP. If you enable this option, you need to enter your device password while you restart the phone. Or else your device won't even boot up (and you won't see the lockscreen) completely and you will be stuck. It's an extra layer of security on top of lockscreen password/pattern/pin. Now coming to your second question, it's a security feature on android where no other unlock methods will work except PIN/Password/Pattern after you restart the device everytime. And it has nothing to do with encryption or decryption. Even if you decrypt the ROM, you will still have to enter your password or pin or pattern on every reboot. Only then all other unlock methods will start working. Some ROMs have a feature where you can bypass this security and unlock the device straight away on every reboot without entering the default pin or password/pattern. But they also put a disclaimer that it's not safe.
Thanks for the info.. But one of the questions "Is the Pocophone F1" encrypted by default?" is not yet answered. I am very interested to know. And (while I am asking) if not, "How can I do encrypt it"?
Yes, it is encrypted by default.
Related
From the online articles and the encryption description i was left with the impression that i will need to enter the password only on boot.
Well appears that once encrypted the only active unlock options become, face unlock, pin and password.
All take too long for my daily use, and since you don't have to use the encryption password for unlocking (the phone is decrypted on boot) but other options like face unlock, why we can't unlock with the normal slider screen or at least pattern unlock?
Is there a way to go around it and enable the slider unlock on an encrypted phone?
p.s.
i know that decreases the security, but knowing that if i lose my phone, chances are the battery will die before someone digs into it, and they will need to decrypt it then.... is enough for my needs.
what version of the os is it? and yes you can change it. you have to go into settings >>security>> and should give you the option to change it. you just have to disable encryption. worst comes to worst...FACTORY RESET
the idea is to change it and still be encrypted...
it's 4.1.1
I guess encryption is not that popular among android users?
Hi,
Is there any way to enable Face unlock with the device encrypted?
While the stock rom is forcing you to have the same pin/password for encryption and lock screen (pretty stupid but anyway), with vdc (or even in the settings app for omnirom) you can use a different password for encryption.
Thank you.
I can unlock my phone OK with my fingerprint, but I can't remember my pattern unlock (well, I think I can, but the phone doesn't accept it). I need the pattern to modify the fingerprint unlock, e.g. to add more fingers. Anyone know how to reset the pattern when fingerprint is working OK?
I'm on stock .253.
pelago said:
I can unlock my phone OK with my fingerprint, but I can't remember my pattern unlock (well, I think I can, but the phone doesn't accept it). I need the pattern to modify the fingerprint unlock, e.g. to add more fingers. Anyone know how to reset the pattern when fingerprint is working OK?
I'm on stock .253.
Click to expand...
Click to collapse
Well This Is Very Easy To Fix .
Follow The Steps:
1) Identify the Gmail registered with the device.
2) Check whether "Android Device Manager" is enabled in Settings-> Security -> Device Administrators if not enabled ,then enable it .
3) Login to Device Manager
https://www.google.co.in/android/devicemanager
4) There you will find an option to "Lock the device" . Lock it with new Password/Pattern.
That's It
Hope It Helps
Please hit Thanks If worked!
Note: Do Connect The Phone To Internet!
heptyle said:
Well This Is Very Easy To Fix .
Follow The Steps:
1) Identify the Gmail registered with the device.
2) Check whether "Android Device Manager" is enabled in Settings-> Security -> Device Administrators if not enabled ,then enable it .
3) Login to Device Manager
https://www.google.co.in/android/devicemanager
4) There you will find an option to "Lock the device" . Lock it with new Password/Pattern.
That's It
Hope It Helps
Please hit Thanks If worked!
Note: Do Connect The Phone To Internet!
Click to expand...
Click to collapse
Thanks. I think this would have worked, or I could have used myxperia.sonymobile.com similarly. Unfortunately I rebooted the phone, and it turns out, even with fingerprint enabled, that it needs a pattern to unlock the first time after rebooting! I had to wipe it with Xperia Companion (there seems to be no on-device recovery user interface that we can use), which was annoying.
I've now set it up again and made very sure I knew the pattern before adding fingerprints!
pelago said:
Thanks. I think this would have worked, or I could have used myxperia.sonymobile.com similarly. Unfortunately I rebooted the phone, and it turns out, even with fingerprint enabled, that it needs a pattern to unlock the first time after rebooting! I had to wipe it with Xperia Companion (there seems to be no on-device recovery user interface that we can use), which was annoying.
I've now set it up again and made very sure I knew the pattern before adding fingerprints!
Click to expand...
Click to collapse
Oops!
Hey,
I just decided to encrypt my Lineage 14.1 bacon (Onepluse One). During the process, I was asked to enter my lock screen pattern. Then the encryption started.
After finishing the encryption, I suddenly get the request to "enter your PIN" to unlock the device. Actually, I didn't enter any PIN? I just have my lock screen pattern.
Of course I made a full backup before encryption. So any ideas how to recover? TWRP is also locked. Any idea is welcome.
And obviously, I feel so stupid at the moment... :crying:
Thanks a lot
In Android 9 Pie (and earlier versions) there is a setting ‘Secure startup’, which is applicable in case of full device encryption (which comes by default in all new Android phones AFAIK). When ‘Require password when device turns on’ is enabled, the password must be entered at phone start and the phone won’t boot if no password is entered. When the other option ‘Do not require’ is enabled the phone starts and I can even receive phone calls, I just cannot unlock the phone.
So my question is: if ‘Require password when device turns on’ is NOT enabled – does this mean that my phone is NOT encrypted and if for example gets stolen, the thief will be able to download all my data to a PC (without unlocking the phone)? If this is true this seems like an absurdly easy way to bypass full device encryption...
Your data is encrypted by default. You can have it set to not encrypt it but it is not something I would advice of you.
As for the secure start up. As long as you have a locked bootloader and a password there are less then .01% of people that can hack into your device.
zelendel said:
Your data is encrypted by default. You can have it set to not encrypt it but it is not something I would advice of you.
As for the secure start up. As long as you have a locked bootloader and a password there are less then .01% of people that can hack into your device.
Click to expand...
Click to collapse
My phone is rooted and the bootloader is not locked AFAIK (it's Exynos).
I am not asking about bruteforce and other hacking techniques that could be used, I am just asking whether my phone is encrypted after boot and before the screen is unlocked.
Yes it is encrypted. Has been since the day you first day Bought it.
OK, but how come then my phone boots and is almost fully operational when ‘Require password when device turns on’ is NOT enabled (e.g. I can receive phone calls, calendar events pop up on screen - although I cannot see what they are all about because the screen is locked)?
orifori said:
OK, but how come then my phone boots and is almost fully operational when ‘Require password when device turns on’ is NOT enabled (e.g. I can receive phone calls, calendar events pop up on screen - although I cannot see what they are all about because the screen is locked)?
Click to expand...
Click to collapse
Think of it as safe mode on PC. Not everything or all permissions are allowed when booting like that. It just a security feature and has nothing to do with encryption. It just locks out some info from being seen without the password.
Ill be honest with you. If you are worried about your data then dont be too worried. Unless you are someone important then your device is only useful for how much the hardware will get. Let me tell you how a phone theft goes.
1. Phone Stolen
2. Sim card removed
3. Device reset
4. If its locked then take it home and flash an OS to it or sell it to a pawn shop that is questionable.
Now the first 3 are normally done before you even know your device is gone (less then a minute)
Encryption bypass / Android (10) security issue after first unlock
zelendel said:
Yes it is encrypted. Has been since the day you first day Bought it.
Click to expand...
Click to collapse
I have discovered another security issue on a rooted device:
On my Magisk-rooted and encrypted Note 10+/Exynos (Android 10) I just found out, that the userdata (data/data ) partition is UNENCRYPTED and fully readable when viewed with an ADB viewer from my PC although the device is in lockscreen mode / locked!
This doesn't happen after reboot before the first unlock! After the device has been unlocked, accessed via ADB and re-locked (but not rebooted) it is (still) unencrypted, even after rebooting the PC!
Here the lockscreen password would not make much sense at every screenlock - it just unlocks the screen which can be bypassed and all data can be read via ADB anyway - it would only make sense once at boot. Is there a way to have two passwords (1 at boot and an easier one at screenlock) for example?
Is this a known bug? / Any ideas?