• Off Topic
  • Encryption-at-rest and secure note taking

Hello all,

You are a very knowledgeable and tech savvy bunch, so I figured this would be a good community to ask. I'm trying to be more privacy and security conscious, which is why I started using GrapheneOS. I still have a long ways to go on my journey, but one thing I've been thinking a lot about is how to write down and store sensitive and important information that my family can access after I die.

I have been looking into Obsidian for this task. My main concern is how to make it secure. I've been reading about encryption and gone down several rabbit holes, but I still can't really formulate a plan on how to achieve something that will work for me and also be secure.

My first question is about GrapheneOS. Let's say I install Obsidian on my Pixel and I start writing down sensitive stuff, like security questions/answers, personal info, bank info, tax info, health records, etc. Now, since my device is encrypted, is that a safe thing to do? Or do I need to take extra steps to secure it? I found this plugin called Meld Encrypt. Would using that be advisable? Would I need to do anything further, or would that be sufficient to protect my data if my phone were ever lost, stolen, or damaged? What about being protected from someone "hacking" into it, if that is even possible (I assume it is, though I'm not anyone special that would be a target to anyone)?

Then on to my desktop. I use Windows, and I have my whole disk encrypted with BitLocker. I assume the same question would be asked here. Is it sufficient enough to just use BitLocker, or do I need to further protect my notes somehow? I would basically want to have Obsidian running at all times when my computer is on--does that factor into the equation on how to make it secure?

How do you guys keep notes secure? I'm sure I will get some answers that involve using a computer not connected to the internet, or pen and paper, but those aren't really something I'm interested in.

Notes? Standard Notes.

I don't know if you can make your windows secure. Been occasionally using it for 30 years, and I don't think it's designed to be private and secure, IMHO.

Totally agree with all Alex said. Standard Notes is a good option with strong encryption, simple to use and open source. In my opinion it would be best to keep all or most of your personal stuff on GOS phone secured with a strong pin or passphrase.