That’s a good point. I wonder if there’s a way to combine the throw-wallet duress pin with the delete-everything duress pin.
Like, enter the duress pin, get the fake profile AND start a timer: if the real pin isn’t entered within 1 hr (or whatever timeframe the user set it to), then it factory resets.
Definitely would be pretty easy to figure out a fake phone profile. Unless you are constantly updating it, any photo/emails/texts call logs will have timestamps from like months/years ago. Might fool a few, but even less if it becomes a widespread thing and authorities become aware of how it works.
It’s gonna be sus when your browsing history and other stats on that profile doesn’t collate with how a normal person uses their phone.
They might confiscate the phone.
My point is that you shouldn’t assume your phone is secure.
If you have something worth hiding on your phone that isn’t hidden when they look at it, they are DEFINITELY going to confiscate your phone
You must enforce the principle of least prilevelege.
Not by just using SELinux in your PC, but IRL.
“it’s new”
That’s a good point. I wonder if there’s a way to combine the throw-wallet duress pin with the delete-everything duress pin.
Like, enter the duress pin, get the fake profile AND start a timer: if the real pin isn’t entered within 1 hr (or whatever timeframe the user set it to), then it factory resets.
Best of both worlds.
Definitely would be pretty easy to figure out a fake phone profile. Unless you are constantly updating it, any photo/emails/texts call logs will have timestamps from like months/years ago. Might fool a few, but even less if it becomes a widespread thing and authorities become aware of how it works.