• funn@lemy.lolOP
    link
    fedilink
    English
    arrow-up
    13
    ·
    7 months ago

    I guess resetting the password will be difficult after forgetting the password. Also it seems most features are only available with the Play Store.

    Custom ROMS without a Play Store will have a hard time.

    • barcaxavi@lemmy.world
      link
      fedilink
      English
      arrow-up
      10
      ·
      7 months ago

      None of these feel like essential feature for me, I’ll be still more happy using a custom ROM.

  • sqibkw@lemmy.world
    link
    fedilink
    English
    arrow-up
    8
    ·
    7 months ago

    This is pretty cool! Wondering about a couple of these features though: locking setup after a forced reset and locking stolen devices which are offline for extended periods. Do these features activate when I determine the phone is stolen? Or do they happen automatically? This might make used phone sales a major PITA if the seller doesn’t properly reset it first.

    • cum@lemmy.cafe
      link
      fedilink
      English
      arrow-up
      4
      ·
      7 months ago

      You intentionally fail the biometrics a few times so it locks the device and requires the pin/password. From there it depends on the country. In the US, they can’t force you to give up a password, but they can force biometrics. If your country doesn’t legally protect you then there’s no software measure that can’t protect you at that point.

        • Flax
          link
          fedilink
          English
          arrow-up
          7
          ·
          7 months ago

          Or literally just Android’s “lockdown” feature

        • cum@lemmy.cafe
          link
          fedilink
          English
          arrow-up
          3
          ·
          7 months ago

          While that’s the strongest security option in that situation, it might cause more problems if they are forcing you to unlock your phone in front of them and you’re being observed. Same issue with the lockdown feature. Failing the fingerprint intentionally is invisible to the hostile observer and let’s you feign ignorance as to why you phone got locked.

      • henfredemars@infosec.pub
        link
        fedilink
        English
        arrow-up
        3
        ·
        7 months ago

        That’s an interesting idea. Pick a weird finger for the biometrics and intentionally use the wrong one if you’re under duress. Fake surprise and astonishment until the device forces you to enter your pin.

        What, the cops are going to force you to use the specific correct finger? Great unexpected idea to still use biometrics and have some protection from being compelled to provide your fingerprint.

  • kylian0087@lemmy.dbzer0.com
    link
    fedilink
    English
    arrow-up
    4
    arrow-down
    1
    ·
    edit-2
    7 months ago

    Factory reset upgrade prevents a reset by a thief

    This is such a annoyance I hat this happen on a tablet once. Didn’t know the login of it anymore and i hat to do some trickery to get it reset.

  • redcalcium@lemmy.institute
    link
    fedilink
    English
    arrow-up
    3
    ·
    7 months ago

    You’ll be able to lock the screen of your phone with just your phone number and a quick security challenge using any device. This buys you time to recover your account details and access additional helpful options in Find My Device, including sending a full factory reset command to completely wipe the device.

    Does this mean I can troll my friends by locking their phone while they’re using their phone?

    • Flax
      link
      fedilink
      English
      arrow-up
      1
      ·
      7 months ago

      It seems it’ll ask some form of password

    • henfredemars@infosec.pub
      link
      fedilink
      English
      arrow-up
      1
      ·
      7 months ago

      Not if it’s implemented correctly. How inconvenient is for your friend just unlock the phone as they normally would? All you have to do is rate limit to something like once a week where it’s effectively useless for harassment.

      • redcalcium@lemmy.institute
        link
        fedilink
        English
        arrow-up
        2
        ·
        7 months ago

        It would be very inconvenient if you time it well, e.g. when they’re playing games beside you and you see them about to land a decisive blow.

  • katy ✨@lemmy.blahaj.zone
    link
    fedilink
    English
    arrow-up
    2
    ·
    7 months ago

    really hope that auto screen lock/factory reset when it detects “being stolen” is reversable or cancellable in case of a false positive

    • henfredemars@infosec.pub
      link
      fedilink
      English
      arrow-up
      2
      ·
      7 months ago

      My impression was not that factory reset is automatic, rather, your device would lock similar to locking your screen normally. Something easy for the legitimate owner to unlock, but nearly impossible for a thief without knowing the pin or having biometrics.

  • tangycitrus@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    7 months ago

    All good. Hopefully this is not a step towards locking the bootloader preventing custom OS installs on Pixel devices.

    • henfredemars@infosec.pub
      link
      fedilink
      English
      arrow-up
      2
      ·
      7 months ago

      I would hope so as I don’t think that’s necessary to be an effective theft deterrent. I imagine a thief has trouble reselling a stolen phone if you have to flash a custom OS to make it usable. A scary boot loader security warning on every boot should deter most buyers, lowering the value of your stolen item and complicating resale.