Privacy and Security Enhancement to USB setting

marla

GrapheneOS has a security feature called "Disallow USB peripherals when locked," which is similar to the Linux app "USB Guard." There's also another Linux tool called "USB Kill" that takes things a step further by acting as a kill switch, instantly shutting down the computer.

I was wondering if the GrapheneOS team would consider implementing a "USB Kill-Switch" feature. The idea would be that if a GrapheneOS phone is in the vulnerable "After First Unlock" state and detects a foreign USB device, it would immediately shut down and revert to the "Before First Unlock" state. This would make physical attacks not just ineffective but actually backfire on the attacker, who likely wouldn’t know about the kill switch. SO the attackers OWN tools would actually end up helping the user. Basically I want to ensure that any seized device will be in BFU mode no matter what.

I get that there's an "Auto-Reboot" feature, but that still leaves a small window of opportunity for an attacker, which could be enough for them to compromise the device. A "USB Kill-Switch" would completely close that window, no matter what the auto-reboot setting is.

[deleted]

marla I very much like your idea but for detecting a usb device being connected you have to leave the data lines on the usb c port on....

yore

[deleted] you have to leave the data lines on the usb c port on

Yes, it would open up large attack surface as it would need to allow data lines at a hardware level but block them at a software level. The closest @marla can get is to set the USB-C port and pogo pins control to Charging-only or Off and set a short auto reboot duration.

Overlay1404

This seems a bit redundant. You can already set the usb-c port to be in charging-only mode or off completely if your in a situation where the phone is in AFU and you think it could be tampered with.