[deleted] The best practice is a password of between 15 and 20 characters.
You need at least 90 bits of entropy for an unbreakable password, which isĀ 7 random diceware words or 18 random letters and numbers, which both have over 90 bits of entropy.
[deleted] Android and iOS can't be compared to Windows or other systems, because they contain a Titan or SE chip and have their own clocks.
I know, that's why I'm asking.
GrapheneLover In any case where you value your security it is best to use a password of more than 32 characters with numbers, letters, and symbols with and without dictionary words in it. If you truly value your security do not use a pincode.
That's not correct at all. I already mentioned above that unbreakable password is considered 90 bits, which is 7 random diceware words or 18 random letters and numbers.
The part about not using a PIN is incorrect too. Pixel devices with GrapheneOS have aggressive throttling which makes 6 digits pin code unbreakable unless someone has an exploit that could bypass Weaver throttling.
For anyone who has found such an exploit, Google would pay a stupid amount of money which means that countless people that want that cash are looking for a way to exploit this and even Google has security researchers behind this.
Conclusion: nobody will ever use such exploit on you and almost all of us.
BackdoorsNRats My lawyer told me you need at least a 10 digit PIN or they will be able to crack it. This was 2 years ago though. EU country.
This is if they bypassed Weaver throttling.
BackdoorsNRats A friend of mine used pattern-lock and they had no problems unlocking it.
Pattern unlock is such a garbage way to secure your phone that GrapheneOS has even removed it as an option.
BackdoorsNRats I also know fingerprint/face scan is easily breached with the right tools.
That's true, but biometrics are necessary, not only they're much faster and convenient, but they allow you to securely unlock your phone even in a place where your password could be recorded by a security camera or where someone could see it over your shoulder.
One cool upcoming feature to GrapheneOS is an ability to have 2FA for fingerprint unlock, which means that you can set a secure seven word diceware passphrase for your main unlocking method and then setup biometrics with a combination of short PIN as a 2FA.