I have another question if someone can be please help. What about the issue that the keys are software keys stored locally?
is it correct that any attacker that gets root can actually get those keys? On Friday, August 3, 2012 11:32:07 AM UTC+3, pof wrote: > > Hello, > > The encryption process only encrypts /data, no other storage locations > AFAIK. > > The other questions you ask are explained in the "Android disk > encryption implementation" part of this blog post: > > > http://nelenkov.blogspot.com.es/2012/08/changing-androids-disk-encryption.html > > > Cheers, > > Pau Oliva > > --- > twitter: @pof > http://pof.eslack.org > > On 08/02/2012 04:32 PM, seattleandrew wrote: > > If anyone can even point me to a resource that would maybe answer any of > > these questions I'd appreciate it. There's just a lot of details in the > > encryption protocol for ICS/JB that I don't know nor have found anything > on. > > > > On Tuesday, July 24, 2012 9:47:06 AM UTC-7, seattleandrew wrote: > > > > I�ve been looking over the documentation at > > > http://source.android.com/tech/encryption/android_crypto_implementation.html > > < > http://source.android.com/tech/encryption/android_crypto_implementation.html> > > > trying to find specific information on the encryption process, I > > would really appreciate it if anyone knew the answer to any of the > > following questions: > > > > �As of Android 4.0+ is the encryption for both the file system > *and* > > master key still 128 AES or have both upgraded to 256 AES? > > > > �Does the encryption process only make a single pass or does it > make > > multiple passes? > > > > �If multiple, how many passes? > > > > �For devices with internal storage will the process /only /encrypt > > �/data�, or will it encrypt other storage locations such as > > �/mnt/sdcard�? > > > > I realize the last question changes based off of device > > manufacturer�s settings but I want to know what Android default > > behavior is. > > > > In any case, I really appreciate you taking the time to read this > > and I�d be grateful for any answers or documentation you could > provide. > > > > -- > > You received this message because you are subscribed to the Google > > Groups "Android Security Discussions" group. > > To view this discussion on the web visit > > https://groups.google.com/d/msg/android-security-discuss/-/u7jhHJk1H0kJ. > > > To post to this group, send email to > > [email protected] <javascript:>. > > To unsubscribe from this group, send email to > > [email protected] <javascript:>. > > For more options, visit this group at > > http://groups.google.com/group/android-security-discuss?hl=en. > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss. For more options, visit https://groups.google.com/groups/opt_out.
