Diffzrence betwen duress app and duress graphen os

Climako

wanted to know the difference between the duress application that performs a factory reset, and the built-in duress feature in GrapheneOS, which only deletes the encryption key. I want to know which one is more secure.

Todfloyd

Climako deleting a encryption key ensures that the encrypted files will forever be encrypted. Formatting files leaves something that can be mostly reconstituted.

akc3n

Climako See https://grapheneos.org/features#duress

GrapheneOS provides users with the ability to set a duress PIN/Password that will irreversibly wipe the device

Same result when doing a factory reset.

Climako

Todfloyd when u make factory reset the encryption key dont delete ?

Climako

But with graphen its not factory reset

akc3n

Todfloyd

Climako Excellent point, I was mistaken.

wuseman

Climako
Why wouldn’t it be?

KleinesSinchen

Duress app might not even be working anymore on newer Android versions since it calls dpm.wipeData and not dpm.wipeDevice
https://developer.android.com/reference/android/app/admin/DevicePolicyManager#wipeData(int,%20java.lang.CharSequence)
(Can't try since no modern test device at hand).

Listening to inputs with accessibility service isn't a great thing to have.
The Duress app has to reboot into recovery for factory reset (which can be interrupted) by an attacker.
→ Just stick to the internal duress function. Works great.

Climako

KleinesSinchen exactly duress called dpm.wipe data but does deleting "duress" from graphen delete the data or only the encryption key

Climako

KleinesSinchen i have tested duress in pixel 9 worked

raccoondad

Climako does deleting "duress" from graphen delete the data or only the encryption key

Its the same concept, there is no difference between the two. Clearing the Titan M chip is clearing all data on the device. The questions options are redundant

Climako

raccoondad

raccoondad its not same one he use dpm.wipedata and graphen duress he delete just encryption key but no data

raccoondad

Climako no, its the same. Deleting the key deletes the data...only ciphertext exists at that point, its not possible to get plaintext after the key is lost.

You do not understand what you are talking about

Pixel devices wipe data by clearing the key, not the ciphertext, because that's redundant.

It still deletes the data, only the ciphertexy remains and that is unreadable.

de0u

Climako It isn't really possible to "delete" data. On an old-fashioned spinning disk it is possible (though very slow!) to overwrite data, but this is not feasible for flash devices. That is why modern systems encrypt all data before storage and make old data inaccessible by destroying encryption keys.

Please see: https://grapheneos.org/faq#encryption