Impossible to anonymize outgoing calls of one userprofile only

graphenediscoverer4

To prevent having to preceed each dialed number with #31# or *67 :
gOS-provided dialer app -> 3 dots -> settings -> calling accounts
-> "phone account settings can only be changed by the admin or work user"
So impossible to configure anonymous outgoing calls on a specific userprofile rather than on the main/admin profile, making all the childprofiles inherit the attribute...

This makes me unable to setup a userprofile dedicated to lend the phone (and its precious data) to a random person in the streets that could pretend wanting to call to actually run away with the phone.

If the person is sincere, then phonenumber won't be revealed to their relative
if it's a thief, then they will only get a burner profile, and won't be able to log in main profiles.

Do you guys know of a workaround?

Murcielago

graphenediscoverer4

Emergency Contacts comes to mind (I really hope someone here knows a simpler, more elegant workaround):

Get the stranger's number.
Save it as a contact with #31# (or similar).
Add it under settings>Safety & emergency> Emergency information>Emergency contacts.
Lock phone's screen and let the person make a call from lock screen via "Emergency".

Your data would at least be protected in AFU behind the lock screen.

For more security:

create a guest profile settings>System> multiple user>guest (don't forget toggle: "allow guest to make phone calls")
end your daily driver profile with the "end session" button (This purges the encryption keys and puts the profile back at rest).
repeat the steps above.

If handing over your phone to strangers is a regular part of your everyday life, if I were you, I would buy an additional cheap burner phone with a prepaid SIM card and hand it over if asked - if the number becomes known, you won't have to really worry about - nor if the phone is stolen.

graphenediscoverer4

Murcielago

Good idea thanks !

Will try this setup to check whether the unknown caller can see what names I put in the emergency list and if their associated phonenumber is disclosed, but if you already know the answer please feel free to make me late!

However I don't understand :

meaning of "AFU" please ?
the nuance when adding the extra step of logging in a burner profile, if daily profile is locked anyway when accessing emergency dialer

Murcielago

graphenediscoverer4

Will try this setup to check whether the unknown caller can see what names I put in the emergency list

My idea was that you only save one contact in Emergency Contacts, namely the one the stranger wants to call. Then he can only see this one contact.

I came up with another idea that might solve your problem with far fewer steps (although unfortunately I can't test this myself as I don't use a SIM card - so please try it yourself):

Get the number of the stranger
dial the prefix + number yourself
lock the screen by pressing the power button
give the phone to the stranger
I believe (but don't know exactly) that you can still press buttons on the dialer during the call (mute, loudspeaker, hang up -please also check whether you can access Home, Back, and App Overview via gestures or 3-button navigation while call is in progress - that would be counterproductive ), but the display is locked at the end of the call.

However I don't understand :

meaning of "AFU" please ?

In BFU (before first unlock) state, the device's storage is encrypted and the user's data is not yet accessible whereas in AFU (after first unlock) decryption keys remain in memory, allowing seamless access to user data.

BFU offers a higher level of security because it ensures that the data remains encrypted and inaccessible until the user explicitly unlocks it.

The following links probably provide more and much better and accurate information about AFU, BFU and encryption:

https://grapheneos.org/faq#encryption

https://discuss.grapheneos.org/d/10108-pixel-afu-vs-bfu-security

https://discuss.grapheneos.org/d/10462-what-information-can-forensic-tools-recover-from-an-afu-gos-phone

However I don't understand :
...

the nuance when adding the extra step of logging in a burner profile, if daily profile is locked anyway when accessing emergency dialer

You can set the data of a specific user profile to rest, e.g. via Hold Power Button> End session (does not work with the Owner Profile, only with secondary profiles) - then they are in the particularly secure BFU state mentioned above.

My suggestion with guest profile (or another secondary profile - that also would work) is aimed at the fact that you can set the particularly sensitive data of your daily driver to BFU via "End session" - that would add an additional layer of protection to your data. The call of the stranger happens all inside the guest profile.

I can't answer whether your threat level is worth this extra effort - you'll have to decide for yourself.

graphenediscoverer4

Murcielago although unfortunately I can't test this myself as I don't use a SIM card

Me neither lol, if someone out there could try this it'd be very interesting!

Murcielago first

does this mean basically after the very first unlock following a boot, or simply while session isn't idle (i.e screen not locked) ?

Skyway

Doesnt solve the *67 issue but you could use app pinning to protect the device from being used beyond the dialer app .

Murcielago

graphenediscoverer4

You probably cut off some text when quoting. I'm guessing: It's about when the phone is in BFU state, right?

That depends on the profile:

Owner profile
After powering up the device and after reboot (That's why Auto reboot is such a simple and powerful feature).

Secomdary profiles
Like owner profile + additionally after "end session" and - if "allow running in background" is deactivated for the corresponding profile - when switching to another profile.

Murcielago

graphenediscoverer4

Me neither lol, if anyone out there could try this it would be very interesting!

Can I ask how you make and receive calls when you're out and about?

Phead

graphenediscoverer4 does this mean basically after the very first unlock following a boot, or simply while session isn't idle (i.e screen not locked) ?

After First Unlock means you've unlocked a specific profile and did not end the session (as in you still receive notifications). You cannot end the Owner session though, it's always active - this works only for secondary profiles as mentioned above.

graphenediscoverer4

Murcielago

Some cities luckily flood their area with public wifis so it's pretty much covered anywhere -> encrypted VoIP through your most trusted app

dc32f0cfe84def651e0e

Same here. It's a pity several functions only work under Owner profile, like call blocking and calling setup.