A 2020 investigation by the Washington, DC-based nonprofit organization Upturn found that more than 2,000 law enforcement agencies in all 50 states and the District of Columbia had access to mobile device forensic tools (MDTFs).
For GrapheneOS full disk encryption, am I correct in understanding that the disk is encrypted when my phone is locked and decrypted when I unlock it? So I don’t need to turn it off for it to be encrypted, as long as it’s locked it’s encrypted?
It’s always a contest between security tools and penetration tools. The problem comes when law enforcement can do this without fair protections of privacy, say if they can easily establish probable cause ( My detection dog is signalling you have illegal data on your phone ) or they are allowed to get a warrant post-hoc for an otherwise illegal search.
…Or they do the illegal search and then engage in parallel reconstruction e.g. make a fake story about following up on an informant.
Once the police just seize and crack your phone on a whim, then the state no longer respects your privacy and autonomy, which means you can no longer consent to be governed, rather are controlled by gunpoint (surveillance and use of force). This is one of the critical ingredients to autocratic rule, since it does a lot to neuter the capacity of discontent turning into revolt.
Good luck with that. The CFAA was written when Reagan was spooked by Wargames in 1982. If you violate any TOS of websites you use (very easy to do) it can be prosecuted as a federal felony with a maximum sentence of 25 years imprisonment.
If the police really want you to disappear into the penal system, they’ll make it happen. And they do, routinely.
It is hit or miss. The fingerprint button is also looking for the electrical signals of a living person. Apparently, that doesn’t end immediately upon death.
Your body doesn’t all die at once. The parts that need a constant flow of oxygen die within minutes, while some parts take hours. Tissues like skin, tendons and heart valves are viable for harvest for as long as 48 hours after death.
I don’t know how long a fingerprint would work after death though. I imagine it depends on the type of scanner. An optical scanner would probably not care. I’m not sure about ultrasonic. Thermal and capacitive would probably stop working within minutes of death.
Lol not that. I’m well aware of that. I meant a source for “fingerprint readers are looking for an electrical signal too” as I’m very sure I’ve heard about them being defeated with a high enough quality reproduction of the finger (read: not flesh at all, let alone alive)
Oh, I did a dumb. Capacitive readers use the body’s natural electrical signal to form an image of your fingerprint. You can trick them by using something conductive and running the right amount of electricity through.
Dead people don’t work though. Not for very long at least.
Capacitive sensors are looking at capacitance of a material, everything has this not just living things and it certainly doesn’t require putting current through the material. You can for example get capacitive sensors for sensing the presence of cardboard, and they’re often used for detecting metal parts (obviously tuned to the specific material). This is also why water droplets mess up touch screens (and the biometric sensor), because it’s close enough to the capacitance of a finger (we’re mostly water after all) to trick it and create false triggers.
Capacitive sensors don’t measure the body’s signals. Capacitance is a physical property of a material. The sensor puts out a signal and measures the response.
I can use a gallon of milk to scroll my phone. Just tried.
Wiping isn’t a 100% thing with either Hard disks or Flash. He should have thrown everything into a wood chipper. And yes, this absolutely has to be a one way trip. Either they get you, or you turn the gun on yourself. Nothing good will come of you surviving.
Stingrays don’t do shit for this. That’s mostly real time location data focused in by tricking your phone into reporting its location to a fake cell tower controlled by an adversary. That doesn’t get into the data in your phone, and even if someone used the fake tower to man in the middle, by default pretty much all of a phone’s Internet traffic is encrypted from the ISP.
The world of breaking disk encryption on devices is a completely different line of technology, tools, and techniques.
But yes, exploits are sold by gray hats rather than by white hats and closed. The NSA is supposed to be on top of this, but instead of closing exploits, they keep them to enhance their anti-terror spying, which they then trickle out to US Law Enforcement, especially if there’s loot (liquid assets) that are easy to seize.
Law enforcement in the US is mostly a highway robbery racket.
Our local sheriff is using some spy level shit in our county that he refuses to explain.
He keeps “happening” upon crimes just “on accident.” yesterday it was “stopped to take a pee in public park and caught a baddie” and two days before that it was “just happen to follow and pull over a guy with lots of pounds of pot hidden in the car.”
The US police are spying on Americans phones, internet, GPS, and everything with no judicial recourse because it is corporations spying and then “giving the info” to the police for money.
The US law enforcement has gone full STAZI but using capitalism as additional cover.
This made me think of Jordan Peterson…some of his early stuff on actual psychology was interesting and informative…then there is all the other stuff, you had a lane stay in it.
But I guess very minor celebrity can go to someones head and make them do crazy things. /s (damn you Poe’s law)
Welp. Just let the nukes fly, then. First it’s “on accident,” and before long you’ve got meth addicted baby prostitute warlords running the local Walmart.
They’re probably just capturing SMS messages or regular calls. Which is still illegal without a warrant, but who watches the watchers? Use encrypted chats and encrypted calls if you’re worried.