Consider i have a phone, and it’s bootloader is unlocked. What is the worst that could happen?
I’m interested in the security aspect of it. Consider you’re detained by the police, and they want access to your phone. Can they get access if the bootloader is unlocked?
What is the role of the password? I.e., i’m using a 4-digit PIN for my phone today. Can the phone’s data be secured against police force if they get physical access to the phone?
To further elaborate:
I’m well aware of the XKCD:
I’m wondering, apart from applying physical force, what are the surveillance aspects? Could somebody sneakily install spyware on my phone that can read all files on the phone’s internal storage if they get a physical hold of it for (let’s say) 15 minutes?
yeah Android actually encrypts all userdata by default nowadays
the PIN/pattern/password is used as the encryption/decryption key. That’s why i guess choosing a 4-letter PIN as lock protection is weak and could be broken.
It would be nice if you could use a password for encryption (that means you’d have to enter it once after every re-boot), and then use a PIN while the device is running. Sadly i haven’t found a way to do that yet.
some custom roms work exactly like this or really you can set it up how you would like.
also if we could set up multiple authentication methods, such that both biometric and pin is required. it would help against shoulder- and camera surfing, and legally against forcing your hand to the sensor to get it unlocked.