Post A3T64g6bLQxjWRhg9I by briar@fosstodon.org
 (DIR) More posts by briar@fosstodon.org
 (DIR) Post #A3SxkQm1q5VUXwuntg by aseem@fosstodon.org
       2021-01-20T13:55:20Z
       
       0 likes, 0 repeats
       
       @briar I have a question. If state gets their hands on a phone of some journalist or activist with Briar installed and used for communication, will they be able to access all chats? In India, the way police access E2EE is that they physically access the phones and clone them. Then they scroll through chats from the cloned phone. They have done it often for WhatsApp and Telegram..
       
 (DIR) Post #A3T64fcT9SrM0zbcBM by briar@fosstodon.org
       2021-01-20T15:36:53Z
       
       0 likes, 0 repeats
       
       @aseem All messages are stored locally and are encrypted. When you start Briar, you'll be asked to type a passphrase. This will be used to decrypt your Briar storage. If you close Briar, everything will be encrypted again. There's also a panic option that will every message.
       
 (DIR) Post #A3T64g6bLQxjWRhg9I by briar@fosstodon.org
       2021-01-20T15:37:08Z
       
       0 likes, 0 repeats
       
       @aseem Briar, as it currently is, does not protect you against cold boot attacks. This attack access the ram, where data is temporarily cached.https://en.wikipedia.org/wiki/Cold_boot_attackMitigation this issue is done on OS level.Do you have any knowledge about the cloning process?
       
 (DIR) Post #A3T9TMPM15AtX8w5q4 by aseem@fosstodon.org
       2021-01-20T16:04:57Z
       
       0 likes, 0 repeats
       
       @briar Okay. So when Briar is not direct in use, it immediately locks you out of the app?
       
 (DIR) Post #A3TAY24NA4k3rCui4u by rudolf@fosstodon.org
       2021-01-20T16:19:02Z
       
       0 likes, 0 repeats
       
       @briar @aseem I do not think the Indian Police could do a cold boot attack on a Android device. As Mediatek devices are popular in India, and you can easily read these with SPFlash, that will probably be done.
       
 (DIR) Post #A3TB5INpWnVi0fsMgS by aseem@fosstodon.org
       2021-01-20T16:24:40Z
       
       0 likes, 0 repeats
       
       @rudolf @briar They use some Israeli software provided by Cellebrite company. They provide kits for breaking into phones. The company claims they can break encryptions of more than 60% phones in the market.
       
 (DIR) Post #A3TBFF52fC5mf4pZYm by aseem@fosstodon.org
       2021-01-20T16:27:10Z
       
       0 likes, 0 repeats
       
       @rudolf @briar This one:https://www.cellebrite.com/en/law-enforcement/lab/