Just going through and answering my own questions
*As of Android 4.0+ is the encryption for both the file system and master key still 128 AES or have both upgraded to 256 AES?* - In JB it looks like the key got upgraded to 256 but I haven't seen anything on the actual filesystem. * Does the encryption process only make a single pass or does it make multiple passes?* - per dmcrypt it does 2000 passes of PBKDF2<http://en.wikipedia.org/wiki/PBKDF2>with a 128-bit random salt *If multiple, how many passes?* - 2000 *For devices with internal storage will the process only encrypt “/data”, or will it encrypt other storage locations such as “/mnt/sdcard”?* - This is a bit trickier to answer, but here's the blunt response: It will encrypt *just* "/data" as the Android standard. This means all of your app's contents will be protected but any downloaded documents won't. Now this changes depending on OEM. An OEM can enhance the Android Encryption functionality to encrypt the entire disk (internal storage) and even encrypt the SD Card (external Storage). On Tuesday, July 24, 2012 9:47:06 AM UTC-7, seattleandrew wrote: > > I’ve been looking over the documentation at > http://source.android.com/tech/encryption/android_crypto_implementation.htmltrying > to find specific information on the encryption process, I would > really appreciate it if anyone knew the answer to any of the following > questions: > > · As of Android 4.0+ is the encryption for both the file system * > and* master key still 128 AES or have both upgraded to 256 AES? > > · Does the encryption process only make a single pass or does it > make multiple passes? > > · If multiple, how many passes? > > · For devices with internal storage will the process *only *encrypt > “/data”, or will it encrypt other storage locations such as “/mnt/sdcard”? > > I realize the last question changes based off of device manufacturer’s > settings but I want to know what Android default behavior is. > > In any case, I really appreciate you taking the time to read this and I’d > be grateful for any answers or documentation you could provide. > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To view this discussion on the web visit https://groups.google.com/d/msg/android-security-discuss/-/QAQIFgtmMUwJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/android-security-discuss?hl=en.
