Add Layer of Encryption to all Local Jami Data
- Ring version: 2019-08-24-01
- Android version: 8.1 / LineageOS 15.1-20190228
- Jami-Version from F-droid
Android is known to have (had) a serious disk encryption flaw: https://techcrunch.com/2016/07/07/android-full-disk-encryption/ With many unpatched Android devices in the wild the current Jami version puts its user at risk.
- Actual result: Android devices opened up by attackers (e.g. border authorities) can betray Jami users because all local Jami data at rest is stored in quasi-plaintext.
- Expected result: All locally stored Jami data shall be protected by an extra layer of encryption.
This should be fixed to prevent similar risk in the future.
Activity
Hi. Thx for the feedback. However I close this as a duplicate of https://git.jami.net/savoirfairelinux/ring-client-gnome/issues/737
-
I didn't move the issue, but now it's here: https://git.jami.net/savoirfairelinux/ring-project/issues/719
My wish would be that Jami encrypts all local and sensitive data. On all client systems! One idea would be that I would have to enter my password after opening the app to unlock it, just like Briar did. Of course, users should be aware that if they don't set a password at the beginning, the local data can't be encrypted either. Another idea would be to make the password not only optional, but mandatory.
Unfortunately, I don't believe that device encryption is part of the standard knowledge of everyday users. So it would be wonderful if Jami could guide users to be more conscious about protecting their data and communications by providing simple and visual ways to do that.
Edited by anna- A deleted user
mentioned in issue #666 (closed)
-
it's not closed. It's a duplicate of https://git.jami.net/savoirfairelinux/ring-project/issues/719
added duplicate label
