Security/Reviews/localdataencryption: Difference between revisions

Jump to navigation Jump to search
no edit summary
(Created page with "== Introduce Feature == * if there is no master password then data stored by the browser is vulnerable * setup a master password automatically without user action to protect the ...")
 
No edit summary
Line 1: Line 1:
= 2011.07.27 =
== Introduce Feature ==
== Introduce Feature ==
* if there is no master password then data stored by the browser is vulnerable
* if there is no master password then data stored by the browser is vulnerable
Line 22: Line 23:
* someone takes device and hooks it up to USB
* someone takes device and hooks it up to USB


== Threat Brainstorming (30-40 minutes) ==
== Threat Brainstorming ==
* largest threat is the theft of either the SD card (when app is installed on an SD card) or theft of the device itself
* largest threat is the theft of either the SD card (when app is installed on an SD card) or theft of the device itself
** some default features of SD card access in Android protect against this attack on another Android device
** some default features of SD card access in Android protect against this attack on another Android device
Line 30: Line 31:
*** In the long run this really is a an issue that needs to be addressed by the underlying OS
*** In the long run this really is a an issue that needs to be addressed by the underlying OS


== Conclusions / Action Items (10-20 minutes)  ==
== Conclusions / Action Items ==
* nothing new at this point
* nothing new at this point
canmove, Confirmed users, Bureaucrats and Sysops emeriti
2,776

edits

Navigation menu