BobbyCarra
Nebula
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
ā09-15-2021 08:48 PM in
Tips
Team Knox, consider implementing USB C restriction if phone hasn't been unlocked for say 12 hours or 24 hours. Hacking companies like Cellebrite use the port to attract the device. Also consider Knox to force reboot device if not unlocked again in say 24 hours or 48 hours, that will force complete protection and make it virtually impossible to extract viable data from target device unless the pin/password is known, leaving brute-forcing as the only feasible option. You can make your devices even more secure! Consider it! Thank you!!!
2 Replies
USBetaModerator
Beta Moderator
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
ā09-16-2021 12:54 PM in
TipsHello @BobbyCarra ,
Can you please expand on USB restrictions, are you referring to not allowing MTP connection to a PC ?
Your device should already ask for PIN if you haven't used it for an extended period time say 48-72 hrs.
Regards
One UI Beta Team
BobbyCarra
Nebula
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
ā09-16-2021 06:43 PM (Last edited ā09-22-2021 06:05 PM ) in
Tips
Private companies that specialize in Hacking phones utilize the USB port to extract data in AFU state, the state where the phone is most vulnerable. If the port is disabled at the firmware level after a certain period of time the user hasn't authenticated, then in theory the port cannot be used to inject malicious code to attempt to hack into device and extract encryption keys and the data. Cellebrite sells tool to the private sector that do just that, utilizing the USB C port mainly to do extractions.