Can full disk encryption be changed to require a PIN?

chinese_233333_bilibli

(My English is not very good)
I searched for the keyword "encrypt" on the forum, but no one seems to mention it
I would say that the decryption of the disk requires the user to enter the password, not the automatic decryption, or the user password and security chip participate in the decryption at the same time
Can it be set up like this?
（I haven't used GrapheneOS, but consider flashing into the OS）

(Note: I want to talk about the decryption of the entire hard drive, not the decryption of the lock screen password，It's the same as entering an encrypted decryption password in Ubuntu Linux)

TrustExecutor

chinese_233333_bilibli
There is an extensive chapter in the documentation on how encryption works in GrapheneOS.
https://grapheneos.org/faq#encryption

chinese_233333_bilibli

TrustExecutor
Thank you for replying, I saw this introduction before I posted my question, but unfortunately I still don't understand it LOL

The only thing I know is that decrypting the hard drive requires the involvement of a secure processor

But I don't trust security processors very much, so I was wondering if it would be possible to encrypt with just the user's PIN，And this question doesn't seem to be answered in the documentation, or is there a problem with my translator?🤔

chinese_233333_bilibli

TrustExecutor
oops，I seem to understand whether it is the key of the security processor encrypted by the PIN set by the user, and then when the user enters the PIN, the key of the security processor is decrypted, and then the key of the security processor unlocks the hard disk？

de0u

chinese_233333_bilibli

There are three storage area types:

unencrypted, for public data such as firmware and the operating system
encrypted by a key derived from the user's PIN/passphrase, for private data
encrypted by a key managed by the device, for things accessible before the user unlocks the device, such as Wi-Fi passwords and cellular settings

There is no single encryption key for all storage.

GrapheneOS

chinese_233333_bilibli No, that's wrong. The secure element only participates via Weaver which provides a random token based on receiving the correct authentication token. It implements throttling after failures. The initial key derivation is done on the main processor in the OS and then finished in TrustZone (a CPU execution mode similar to but not the same as a hypervisor, not a processor) where the randomly generated disk encryption keys are decrypted with the derived key encryption key. There is no secure element key involved.

GrapheneOS

A basic PIN such as 6 random digits is only secure due to the secure element throttling. It makes no sense to disable that and use an insecure lock method that's trivially brute forced. A strong passphrase such as 6-8 random diceware words can avoid depending on the secure element throttling, but it's not in any way harmed by it. It's strictly more secure to have the secure element throttling. There's zero downside.

It doesn't make much sense to trust the CPU but not the secure element. However, if that's the threat model, it is not trusted in the way you think for this but rather provides an additional input for key derivation. All of the key derivation is done on the main CPU in the OS and then in TrustZone to finish it up with hardware bound key derivation. The wrapped key system is then used to provide handles for the disk encryption keys without the OS kernel having direct access to avoid kernel information disclosures leaking the keys. Wrapped keys do not have to be used in order to use the hardware encryption acceleration but are a security feature where the keys can be used without the OS having direct access to reduce the opportunity for leaks. As an example, it prevents an app leaking the keys via a kernel vulnerability and then that being used later. It's a very minor security feature vs. the massive security boost provided by the secure element throttling and the decent boost from hardware-bound key derivation. The only thing you're trusting is the main SoC including the CPU for this, which is unavoidable in general. You can't avoid trusting the CPU.

chinese_233333_bilibli

GrapheneOS
Thanks for the answer, it looks like my issue is solved, I am on this forum for the first time, how to mark that discussion as closed/resolved

chinese_233333_bilibli

Thanks to all for the responses
感谢所有人的答复