Is factory reset also safe against police and other forensic scientists?

gotest

It is well known, that GrapheneOS and the most (newer) smartphones encrypt all data at an factory reset and delete (or wipe) the key after the encryption. This should be safe first of all. But is the police or an other experienced forensic scientist still able to recover/decrypt the deleted data?
Was there ever a case, where this was possible?
So how safe is the factory reset functionality regarding to deleting the data on the GrapehenOS phone?

other8026

gotest first, I'd suggest you take a look at this section on the website to see how disk encryption is implemented: https://grapheneos.org/faq#encryption

Here's a quote from that section:

Weaver also provides reliable wiping of data since the secure element can reliably wipe a Weaver slot. Deleting a profile will wipe the corresponding Weaver slot and a factory reset of the device wipes all of the Weaver slots.

Since Weaver slots are wiped, data can't be recovered.

trilogy6202

gotest With AES-256 encryption I say your data is safe. Here's an interesting read: https://seirdy.one/posts/2021/01/12/password-strength/

Here's a snippet

If your threat model is a bit smaller, simulate putting a smaller object into the MOAC’s furnace. For example, the Earth has a mass of 5.972×10²⁴ kg; this gives the MOAC a one-in-ten-trillion chance of cracking a password with 256 entropy

MOAC = Mother of all Computers

DeletedUser64

gotest Was there ever a case, where this was possible?

If a Government agency anywhere on the planet has broken into GrapheneOS, they are not going to tell the world.
They will keep it to themselves and work out how to use the information they find, without compromising where it came from, which is a fine line to walk.
I don't think there is a recorded case anywhere, that shows GrapheneOS being compromised.
there are reports of GrapheneOS being interrogated, by user ineptitude/error, no locking mechanism used, password given over or snatched from the users hand whilst opened and in use.

DeletedUser64

trilogy6202

sorry Trilogy6202 I am a non believer... in Https://seirdy.one
earths mass... a guess
average temperature of the observable universe... a guess
MOAC a figment of imagination
So by using two guesses and a item of pure imagination, it confidently states AES-256 encryption is hard to break.
so far down the rabbit hole...

what I believe in is AES-256 today is good enough.

trilogy6202

DeletedUser64 No worries, nothing to be sorry about.
I haven't checked his/her calculations but even if earth mass, universe temperature and MOAC possible efficiency are off by 20-30 % each, 1 in 10 trillion is so small that there is margin for some error. Say that the real number was in fact 3 orders of magnitude smaller, 1 in ten billion is still a very low probability imo.

Blastoidea

I must be confused.

If you encrypt data, then wipe the key(s) how do you ever recover the data?

KleinesSinchen

Blastoidea If you encrypt data, then wipe the key(s) how do you ever recover the data?

The whole point of crypto-shredding is that wiping the key is sufficient to make the – still existing – data inaccessible. There is no need to overwrite data (possibly multiple times with different patterns like on floppy disks). But… if the key can be recovered somehow, because it is either still readable somehow/somewhere or can be guessed (bruteforced) the data will be readable again.

If you were using a weak cipher (short key) like, let's say DES (56 bit), recovering the data after fully shredding the key is possible. If an AES 256 bit key is gone there is no known way to access the data afterwards.

trilogy6202

Blastoidea I must be confused.

If you encrypt data, then wipe the key(s) how do you ever recover the data?

Well you don't. If you wipe the keys in the secure element by factory resetting your phone your data is lost.

Blastoidea

KleinesSinchen

The mysterious and all-encompassing “somehow”.

Speculation, hand-waving, and hot-stove discussions.

Blastoidea

trilogy6202
Therefor, I’m a bit puzzled by OP’s question.

trilogy6202

Blastoidea ¯_(ツ)_/¯