{ "@context":"https://www.w3.org/ns/activitystreams", "type":"Collection", "id":"https://social.jayvii.de/objects/UJMVoXf1JlU/thread", "items":[ { "@context":[ "https://www.w3.org/ns/activitystreams", {"Hashtag":"as:Hashtag"} ], "published":"2024-06-16T07:44:03.349Z", "attributedTo":"https://social.jayvii.de/actors/jayvii", "replies":"https://social.jayvii.de/objects/UJMVoXf1JlU/replies", "to":["https://www.w3.org/ns/activitystreams#Public"], "cc":["https://social.jayvii.de/actors/jayvii/followers"], "content":"

Genuine question: what threat model does the \"app locking via screenlock\" on many #Android apps like #Signal, #Nextcloud #Talk and many other apps follow?

I can hardly make up a scenario where some adversary gets their hands on my unlocked phone and then fails to unlock apps that are locked with the same password/pin as the lock screen itself.

Anyone with further insights? #security #privacy

", "mediaType":"text/html", "attachment":[], "tag":[ {"type":"Hashtag","name":"#Android","href":"https://social.jayvii.de/tags/Android"}, {"type":"Hashtag","name":"#Signal","href":"https://social.jayvii.de/tags/Signal"}, {"type":"Hashtag","name":"#Nextcloud","href":"https://social.jayvii.de/tags/Nextcloud"}, {"type":"Hashtag","name":"#Talk","href":"https://social.jayvii.de/tags/Talk"}, {"type":"Hashtag","name":"#security","href":"https://social.jayvii.de/tags/security"}, {"type":"Hashtag","name":"#privacy","href":"https://social.jayvii.de/tags/privacy"} ], "type":"Note", "id":"https://social.jayvii.de/objects/UJMVoXf1JlU" } , { "@context":[ "https://www.w3.org/ns/activitystreams", {"Hashtag":"as:Hashtag"} ], "published":"2024-06-16T08:13:37.000Z", "attributedTo":"https://social.linux.pizza/users/realestninja", "inReplyTo":"https://social.jayvii.de/objects/UJMVoXf1JlU", "replies":"https://social.linux.pizza/users/realestninja/statuses/112625294836634512/replies", "to":["https://www.w3.org/ns/activitystreams#Public"], "cc":["https://social.linux.pizza/users/realestninja/followers","https://social.jayvii.de/actors/jayvii"], "content":"

@jayvii if someone grabs your phone before the screen is locked? It probably won't help against hackers but against a casual attempt I would assume

", "attachment":[], "tag":[ {"type":"Mention","name":"@jayvii@social.jayvii.de","href":"https://social.jayvii.de/actors/jayvii"} ], "url":["https://social.linux.pizza/@realestninja/112625294836634512"], "type":"Note", "id":"https://social.linux.pizza/users/realestninja/statuses/112625294836634512" } , { "@context":[ "https://www.w3.org/ns/activitystreams", {"Hashtag":"as:Hashtag"} ], "published":"2024-06-16T08:24:48.000Z", "attributedTo":"https://mastodon.social/users/DonTheMaster", "inReplyTo":"https://social.jayvii.de/objects/UJMVoXf1JlU", "replies":"https://mastodon.social/users/DonTheMaster/statuses/112625338851946877/replies", "to":["https://www.w3.org/ns/activitystreams#Public"], "cc":["https://mastodon.social/users/DonTheMaster/followers","https://social.jayvii.de/actors/jayvii"], "content":"

@jayvii also, a virus can access any app data if the app is not locked

", "attachment":[], "tag":[ {"type":"Mention","name":"@jayvii@social.jayvii.de","href":"https://social.jayvii.de/actors/jayvii"} ], "url":["https://mastodon.social/@DonTheMaster/112625338851946877"], "type":"Note", "id":"https://mastodon.social/users/DonTheMaster/statuses/112625338851946877" } , { "@context":[ "https://www.w3.org/ns/activitystreams", {"Hashtag":"as:Hashtag"} ], "published":"2024-06-16T09:02:07.946Z", "attributedTo":"https://social.jayvii.de/actors/jayvii", "inReplyTo":"https://mastodon.social/users/DonTheMaster/statuses/112625338851946877", "replies":"https://social.jayvii.de/objects/v-Qkq9VMgAo/replies", "to":["https://www.w3.org/ns/activitystreams#Public","https://mastodon.social/users/DonTheMaster"], "cc":["https://social.jayvii.de/actors/jayvii/followers"], "content":"

@DonTheMaster sure, that might help mitigate damage, if that's how locking works (and app data is encrypted on device...). However once the device is compromised, there is not much hope to begin with.

", "mediaType":"text/html", "attachment":[], "tag":[ {"type":"Mention","name":"@DonTheMaster@mastodon.social","href":"https://mastodon.social/users/DonTheMaster"} ], "type":"Note", "id":"https://social.jayvii.de/objects/v-Qkq9VMgAo" } , { "@context":[ "https://www.w3.org/ns/activitystreams", {"Hashtag":"as:Hashtag"} ], "published":"2024-06-16T09:06:32.000Z", "attributedTo":"https://mastodon.social/users/DonTheMaster", "inReplyTo":"https://social.jayvii.de/objects/v-Qkq9VMgAo", "replies":"https://mastodon.social/users/DonTheMaster/statuses/112625502965258963/replies", "to":["https://www.w3.org/ns/activitystreams#Public"], "cc":["https://mastodon.social/users/DonTheMaster/followers","https://social.jayvii.de/actors/jayvii"], "content":"

@jayvii that's true, any trojan will sit there and wait for any user unlock to "do it's job".

Still if you are travelling borders or so, this extra lock could be useful. Depending on the laws in the country

", "attachment":[], "tag":[ {"type":"Mention","name":"@jayvii@social.jayvii.de","href":"https://social.jayvii.de/actors/jayvii"} ], "url":["https://mastodon.social/@DonTheMaster/112625502965258963"], "type":"Note", "id":"https://mastodon.social/users/DonTheMaster/statuses/112625502965258963" } ] }