FYI in many countries, police is not allowed to force you to put your code to unlock your phone, BUT they are allowed to force you to fingerprint / face recognition unlock your phone. In France it's the case.
Police States have to police I guess :/ Really wish legislation kept up with technology rights. Though… I guess I wouldn’t trust them to get it right/in our favor.
@@ajthunder85Even with a warrant, they may not be able to compel you to put the pin in. And even if they can, a contempt of court charge may be better than a charge for whatever stuff they want to prosecute you for.
If your threat model is severe, always do backups, and just wipe your phone when you travel. Restore it when you arrive. It's the only way to be sure. ¯\_(ツ)_/¯
Naomi: Well done! You clearly put in a load of time researching this topic. And then another huge amount of time writing your script, editing your presentation, and coordinating it with your graphical presentations. The above is hard work. You made it look easy, which evidences your talent and professionalism. Experts make things look easy. Changing gears... We are trusting Apple that they do not store finger-print data on their servers. No matter what Apple claims, we cannot confirm their claims. Finger-print vulnerability: Someone can unlock your phone while you are sleeping. For most folks, it is not an issue. But if the authorities want to get into your phone, they can find a way to press your finger to the phone. Then the court battle will follow. And if they pressed your finger to your phone while you were sleeping, then you will probably never know that they got into your phone. Lastly, iPhones will ask for your code after some interval of time, even if you have the finger-print option enabled. Even without having done a re-boot, after several days, the phone will require your code. Once again, great work with this video!
Someone who snoozes so deeply and so insensitively such that their finger can be lifted and teleguided to activate a phone clearly needs some medical intervention! Or they need to reassess the trust relationship with their sleeping partners! A phone manufacturer cannot be liable in this sleeping beauty scenario 😅 By the way, I couldn't agree more that Naomi's videos are well researched and delivered! The woman is simply a walking encyclopedia on all things security!
@@adstix "Someone who snoozes so deeply and so insensitively such that their finger can be lifted and teleguided to activate a phone clearly needs some medical intervention! Agreed. Those with medical issues should lose their privacy. And if you ever decide to write a ransom note, remember that you need to press hard to leave a finger-print. You need to press hard enough that it would wake you up. Why do criminals wear gloves, when all they have to do is not tough anything hard enough to wake someone? "Or they need to reassess the trust relationship with their sleeping partners!" Especially if they are away and sharing a hotel room with a colleague, or in a homeless shelter, etc. They should lose their privacy. "A phone manufacturer cannot be liable in this sleeping beauty scenario" My refrigerator broke down. I am holding my phrenologist responsible. I was going to hold my phone manufacturer responsible. But your reasoning made me re-evaluate who is responsible.
Graphene also allows you to set a "duress password/pin," which can be given in the event someone attempts to force you to unlock your device. Upon entry, it wipes and restarts the device. An extreme and niche measure, for sure, but it's there. I personally would like to see the option for it to enter a "clean" profile so it looks like there's nothing to find. Both so you can have that security measure without losing all your data and in case whoever wants to unlock your device wouldn't take too kindly to it wiping itself.
I simply don’t use it incase someone presses my phone to my finger as I sleep. Similar if it’s being stolen, Police (who can check phones in my country) or if I die, I don’t want it unlocked and my journal read.
@@helloworld_2472Yes if an authority want to know what is on actually any device or hard drive (even if it was placed in a fire so I heard) the data can be lifted. Nothing is private except for paper notes and paper photos that you keep in a fireproof safe and then burn before you pass away. Actually Floppy Disk or Tape Drive or Punch Card data is also private once professionally erased or burned. I guess if you drop your phone in a hammer mill (not necessarily hammer it) it will destroy the microchip and whatever was on it. E waste disposal companies can provide proof your old device is un readable after you give it to them they have a privacy contract.
Thank you PIN, with the right scramble software, seems best. Cops and other law enforcement officers have a harder time with pins than finger prints. I have not heard were fingerprints where stolen and then used to unlock a device. But I can see it.
I have a sneaking suspicion that it’s not super safe, much like the rest of the location services offerings. But that too boils down to how far down the privacy rabbit hole you want to go. Would indeed love a video on that topic!
Ideally, phones would have all three - pin, password, and biometric, and would use them appropriately in combination with one another and in conjunction with lost & stolen device recovery services. Passphrase or PIN at startup to unlock device encryption. Ask for biometric too if there have been unauthorized attempts to unlock the device. Require passphrase instead of pin+biometric for first unlock if the device can't connect to determine its lost/stolen status, after 3 failed unlocks, or if the device is powered down or loses connection following an unsuccessful unlock. Have the option to require PIN+biometric, biometric only, pin only, or either or depending on the user's threat model, and other factors like the length of time the device has been locked. Be able to quickly change to higher security settings on the fly from the power menu so that if normally you'd just need a fingerprint, now you need that and a pin. Have a setting to make the device drop back to BFU on failed unlock attempts. You could strike a much stronger balance between security, privacy, convenience, and consent with a more flexible authentication scheme, and it can be made user friendly.
That would be much better indeed. But most people can hardly spell their own names, and this extra security flexibility you’re proposing would be too much for them to handle.
What about a hybrid model where unlocking is done by fingerprint, but all the really important stuff like banking and password manager apps are protected by a password?
Some banks use fingerprint. some use password, some use passcode, and some use a combination plus email,or text and then entering a code. I wonder if using Apple parent control or repair mode can help restrict app access when you are out. Never hand your phone to someone unrestricted. i much prefer fingerprint over face. Also if not needing phone on, add and keep a simlock code that must be entered after you type pincode. So then turn phone completely off, you'll need more than the pin. I don't recall if simlock is for card or esim or both?
My banking app will only care about the UID and password of my bank account--not the phone. It will allow whatever biometric device the phone has, but it will provide that option only after confirming the phone's password before the first use.
In the US, it is settled. US Supreme Court Case: Riley v California - 573 U.S. at 394-95 (discussing the privacy concerns created by the vast amount of personal information kept on cell phones). Biometric scans are considered non-testimonial and do not require a warrant, similar to collecting fingerprints when booking a suspect, whereas a pattern or series of numbers is testimonial which would require a warrant.
Your ACE!! Super Grateful for all the work you do for us & the amount of research that go's into a video like this is Unreal , So i can not thank you enough for All your Hard work Big Fan from Ireland!!
Very helpful video with interesting insights. I am interested in Face-ID also. Better than Fingerprint? I don'tlike about Face-ID, that the camera must not be covered, so removing the little plate every time is annoying.
How do you easily disable fingerprint on Android if getting stopped by authorities i.e.? On iPhone, it's pretty easy just pushing the power button multiple times
From education on electronic security far, far away and long time ago (but it still applies well today): we were trained NEVER to use any biometrics for authentication, exactly because as you said it - biometrics are forever, unchangeable. We were trained for biometrics to be used only as the last (extremely consequential)action confirming step after authentications, both physical and electronic and multiple factors were used to be where you are and use what can be used there. Hence, for example to push big red button you needed to be identified&authenticated to be where it is and to use system on which it is but only for the very last act of pressing it biometrics will be used to document who acted upon. Unfortunately modern society jumped on sell-ability and false promises of security in biometrics... but then it is society where usernames are typically real names (another pet peeve - we were trained from day one not to have username in any way shape or form associated with who we are...)
Would you consider making a video helping to create your own threat model? Would be great to see something along those lines in your style and could be useful for many people. Keep up the great work.
You can be in a situation where you are arrested with your device on hand and if you have secure it with fingerprint they can make you open the device by force. You don't have the option not to tell the password that way
You can’t used fingerprint stored elsewhere. Fingerprints are stored as a hash, so I might use PI as the hash, I get a numeric value of your fingerprint then times it by PI. Regardless of the method used you end up with a numeric value which must match the store numeric value for that device. If a “good” fingerprint is on the sensor you just need to apply body heat to the sensor and the device will unlock. You can wipe your fingerprint from the sensor, which defeats this attack.
I have currently an iPhone 13 with Face ID and a long password enabled. Should I disable Face ID or keep it enabled? I also have a privacy screen and I don’t unlock my phone a lot. So I wonder if the convenience with Face ID makes my phone less secure.
@Naomi Brockwell TV You look great as always, also have you seen the new Realme GT 5 Pro? Which has the new Palm Print Unlock meaning it works with biometrics when you wave at the camera it unlocks with an advanced security AI feature. Means it will only recognize your Palm Print and no one elses which is cool, Im thinking of getting this device. Plus has a Heart Rate Measurement feature. wow.
Supposedly face unlock (at least the way Apple does it) is more secure than even fingerprints. Unlike most Android phones, Apple uses an IR emitter to draw a topographical (shape) map of your face for authentication where a lot of Android phones just use a camera and compare the picture to a stored image. The latter is much easier to defeat than the former. The IR emitter and receiver is why Apple hasn't been able to shrink the notch on the iPhone...the extra sensors need more space. They still use fuzzy matching like with fingerprint unlock so you can wear glasses or grow a beard without authentication failures.
@@linuxramblingproductions8554 Then turn on attention awareness. The phone will only unlock if you're looking at it and it can't be unlocked if you're sleeping for example.
@@linuxramblingproductions8554You apparently don’t understand how FaceID in iPhones works. It’s not just that it makes a 3D map of your face instead of just taking a picture, it also scans your eyes and it will only unlock if you’re actively looking directly at the screen. You can have your eyes closed or look 5cm aside and it won’t unlock. You can aim people’s iPhones at them as much as you want, but unless you force them to be lucid and actively look at their phone while you’re doing it, you’re not getting inside. There’s a reason why it’s described as the most secure biometric measure.
Good content (as always), but I’d also like to see a high level comparison with Facial Recognition at least in terms of the probability numbers as a reference.
Depending on the phone with a PIN it can be 5 or 6 digits and all the person has to do is start at 010101 then count upwards until they get the correct pin, it might take a long time but is achievable as the device normally doesn't lock the device after so many failed attempts. Face unlock even opens up with my grandson's face. Of the three fingerprint unlock I consider to be the safest but more than one person's fingerprint could unlock the phone as, I believe, it only checks certain points and if those points match up the phone opens.
I’d be interested in seeing the comparison of PIN/password vs face recognition as most phones these days have moved to facial biometrics over fingerprints, iPhones being a prime case. I’m not overly convinced of the security of the facial unlock due to the wide availability of photos surely enabling some kind of hack.
My favourite t-shirt is the one you wear 😅 Seems like with face recognition the law enforcement can unlock your device legally just by putting the device in front of your face 😊
A simple social hack is to use a non standard finger (eg not your thumb or pointing finger) and possibly in a non standard position, at 90 degrees or upside down. Then when confronted say you don't use fingerprint, put your thumb on the scanner and say see.
I can see that working initially. But if one is rly keen on getting into your phone, for whatever the reason.. once they run out of options they might think of trying the rest of your fingers just in case. : D
I guess I should stop using my pin as 1234 for everything then, , of course always something that many people just over look in so many ways, thanks on sharing.
Also consider how short of a time it would take to try all of the 4 digit pins if there wasn't some sort of time delay to prevent the brute force attack. Then some devices will wipe after so many bad attempts. I know iPhones as far back as the 4S would wipe if you had too many bad attempts. There are ways to make them not wipe but it these are fairly complicated
With regards to 14:12 I have an idea - could there be an implementation of multiple profiles per phone (kind of like GrapheneOS) where a separate PIN automatically unlocks and opens a “dummy” profile? For example, if coerced into unlocking your device, one could give the dummy PIN instead of the real one and unlock to a set-up, perfectly plausible phone setup with believable information (kind of like a “mugger’s wallet”) You’d use a normal PIN otherwise but be able to unlock this dummy profile to satisfy coercive entities so you can leave
Why don't we have fingerprint plus pin completion? So one or two digits that need to be entered of a 6-digit pin after using fingerprint. Something you know + something you have + quicker access. Duress digit entered can either reset or open decoy screen.
Well Naomi my Google Pixel 6 Pro has this feature but it is extremely finicky on whether it works or not. Even worse is setting it up and this takes a VERY and frustratingly long time as the print is not always captured on the first attempt if at all!! I have tried repeating the same finger five times and even this does not mean the print will be accepted on trying to open the phone leaving me no choice but to use the PIN code. Now although you stated that the print is just for the opening of the phone I now find opening most of my apps some of which do not have anything to do with Google for example my government health system app, and I find that also so frustrating especially when you need to access the phone or app quickly. So for me it is more of an encumbrance more than a help.
Most people need security to protect phones from thieves and finders of a forgotten phone. Americans seem to need security to protect from relatives, friends, spouses and police. What a great society.
@@fuglbird where i live i never heard of someone having his phone stolen. tbh i feel bad for americans. they keep saying how great america is when it is not.
I use a 6-digit pin to unlock my phone running Graphene OS. I do use fingerprint to unlock some apps on my phone, however I consider my 6-digit pin the first line of defence
I use fingerprint on my Redmi Note, but you can (and must every 72h) unlock it with the PIN. Thanks to the video I tested, if brute forcing the PIN is possible. After three attempts there is a delay for 30 seconds before the next retry is possible. Good enough for me. If someone shoulder-surfs and gets my device, the damage will be acceptable. My banking app is using fingerprint to unlock and without the photoTAN generator it is only possible to view the balace. Aegis and KeePass also use fingerprint or 14+ character passwords.
A bit on coercion. There's a possibility of getting your phone unlocked with biometrics when you're sleeping, by your family member, partner or your one night stand if you're into that. If you're concerned with that, don't use biometrics. But then you'll have to somehow explain or dismiss your distrust in them if they suspect something. It's not a concern with strangers I guess.
Fingerprints are forever means that the pattern stays the same. But in practice they are not so much forever. South African drivers licence cards include a fingerprint and must be renewed every five years. My previous one had my fingerprint but when I last renewed mine, the new card came back with "NO PRINT" in place of my fingerprint on the card. This led me to discover it wasn't a totally uncommon thing for older people as our fingerprints "wear out" as we age. More recently my Android phone has become very erratic in recognising my finger print. Some times there is no problem and others it will repeatedly fail and run out of attempts requiring PIN entry to unlock my phone. Two weeks ago I collected new cards at my bank and the biometric fingerprint system failed for several different fingers before finding one that worked. Our banks use the same government biometric system as the drivers licence fingerprints do.
You forgot to mention the biggest weakness of fingerprint unlock: Everyone who catches you sleeping while you have your phone on you can unlock your phone without coercion and without you ever knowing. Any random sitting next to you on your long distance flight. Anyone at a party when you're passed out. Anyone at work, if you do naps there in your lunchbreak. Your partner or every one night stand.
I use face unlock with a passphrase to unlock on my iPhone. During border crossings I press the power button 5 times quickly to disable face unlock until I enter my passphrase again. The passphrase is longish, but Apple only ages it out once a week so you're not constantly typing it in.
@@eventhough9119Because the last time I crossed the border the border guards pulled me in and when they stop you they make you leave your phone in the car. I don’t want anyone snooping through my phone. If Face ID is disabled I can’t be forced or tricked into unlocking it by some overly aggressive border guard. They can’t compel a password, and I’ll just go home.
@@eventhough9119 Because I've been pulled in for a search before and the border guards tell you to leave your phone in the car. I don't want them to be able to hold up my phone to my face to unlock it. They're not allowed to force you to punch in your passcode to search it so I disable Face ID.
@@eventhough9119because you can be physically forced to face unlock, and a border crossing is a common instance where your rights are non-existent unless you have a way to enforce them. Temporarily disabling face unlock means they need your consent to successfully search or tamper with your phone. You may still face consequences for refusing that consent, including arrest, detainment, or deportation, but by reintroducing "something you know" (your passphrase) as an element of explicit consent, it is your choice to make. You can claim to not know it or to have forgotten it because of how rarely you need it. You may even have an actual scheme of not knowing or of only partly knowing, such as a yubikey that types half of your passphrase. You may even have a custom OS with duress passwords to either show a sanitized set of data or wipe the device, or both. The point is disabling biometric in a situation where you face non-consentual searches restores both consent and agency to you. What you do with that is up to you.
We need a smartphone that runs a hypervisor with two virtual (guest) machines. One guest O/S having your full view of stuff; the other O/S for showing you just the bare minimum apps to make you appear like a very vanilla user. This way, coerced entry (law, boarder crossing) gets what they think they need to see while your true privacy isn't invaded.
When I was in my grad class for info management security law class we were told a finger or face is something you are. So since that’s the case in law speak you would be required to unlock or the officer are allowed to unlock your device using bio. A pass code or pass word is something you know and is be covered by 5th amendment or simply say I forgot. In the US.
FYI in many countries, police is not allowed to force you to put your code to unlock your phone, BUT they are allowed to force you to fingerprint / face recognition unlock your phone.
In France it's the case.
Same in the US. But for a pin they need a warrant.
Police States have to police I guess :/
Really wish legislation kept up with technology rights. Though… I guess I wouldn’t trust them to get it right/in our favor.
@@ajthunder85 As mentioned in the video, none of this law is settled
@@ajthunder85Even with a warrant, they may not be able to compel you to put the pin in. And even if they can, a contempt of court charge may be better than a charge for whatever stuff they want to prosecute you for.
@@NaomiBrockwellTVplease, how to restore phone 📱 backup onto Grapheneos? Will this breach the whole privacy benefits of Grapheneos?
If your threat model is severe, always do backups, and just wipe your phone when you travel. Restore it when you arrive.
It's the only way to be sure. ¯\_(ツ)_/¯
That alone could be enough to flag you as a threat by US border patrol. A wiped phone would be considered suspicious.
@@oceanwonders That’s fine. I’m not actually a bad dude. lol I just don’t need people rummaging through my private info.
Turns out .512% of the population is 12 years old and has chosen their pin to be 6969…. Now if you’ll excuse me, I have a pin to change
Coincidentally, as I write this the number of comments to this video are 69...
😂
6969 is safer than 1-2-3-4
😂😂
@@NomadKevtrue, but not safe from STDs! 😂
Naomi: Well done!
You clearly put in a load of time researching this topic. And then another huge amount of time writing your script, editing your presentation, and coordinating it with your graphical presentations.
The above is hard work. You made it look easy, which evidences your talent and professionalism. Experts make things look easy.
Changing gears...
We are trusting Apple that they do not store finger-print data on their servers. No matter what Apple claims, we cannot confirm their claims.
Finger-print vulnerability:
Someone can unlock your phone while you are sleeping.
For most folks, it is not an issue. But if the authorities want to get into your phone, they can find a way to press your finger to the phone. Then the court battle will follow. And if they pressed your finger to your phone while you were sleeping, then you will probably never know that they got into your phone.
Lastly, iPhones will ask for your code after some interval of time, even if you have the finger-print option enabled. Even without having done a re-boot, after several days, the phone will require your code.
Once again, great work with this video!
Someone who snoozes so deeply and so insensitively such that their finger can be lifted and teleguided to activate a phone clearly needs some medical intervention!
Or they need to reassess the trust relationship with their sleeping partners!
A phone manufacturer cannot be liable in this sleeping beauty scenario 😅
By the way, I couldn't agree more that Naomi's videos are well researched and delivered!
The woman is simply a walking encyclopedia on all things security!
@@adstix "Someone who snoozes so deeply and so insensitively such that their finger can be lifted and teleguided to activate a phone clearly needs some medical intervention!
Agreed. Those with medical issues should lose their privacy.
And if you ever decide to write a ransom note, remember that you need to press hard to leave a finger-print. You need to press hard enough that it would wake you up.
Why do criminals wear gloves, when all they have to do is not tough anything hard enough to wake someone?
"Or they need to reassess the trust relationship with their sleeping partners!"
Especially if they are away and sharing a hotel room with a colleague, or in a homeless shelter, etc. They should lose their privacy.
"A phone manufacturer cannot be liable in this sleeping beauty scenario"
My refrigerator broke down. I am holding my phrenologist responsible. I was going to hold my phone manufacturer responsible. But your reasoning made me re-evaluate who is responsible.
@@NoEgg4u Okay, let's agree to disagree!
Good thing we both agree that Naomi is good at what she does for us, right?
Just common sense! Most sheeple are OBLIVIOUS as to how easily they can get hacked!
Graphene also allows you to set a "duress password/pin," which can be given in the event someone attempts to force you to unlock your device. Upon entry, it wipes and restarts the device. An extreme and niche measure, for sure, but it's there. I personally would like to see the option for it to enter a "clean" profile so it looks like there's nothing to find. Both so you can have that security measure without losing all your data and in case whoever wants to unlock your device wouldn't take too kindly to it wiping itself.
That would work well however if they use some external tools or are smart they would notice multiple profiles and question why the new one is empty
I simply don’t use it incase someone presses my phone to my finger as I sleep. Similar if it’s being stolen, Police (who can check phones in my country) or if I die, I don’t want it unlocked and my journal read.
Most of the phones can be unlocked even in before first unlock state.And Israeli company sell software developed for that
@@helloworld_2472 Yeah, I know. ✌🏼
@@helloworld_2472Yes if an authority want to know what is on actually any device or hard drive (even if it was placed in a fire so I heard) the data can be lifted.
Nothing is private except for paper notes and paper photos that you keep in a fireproof safe and then burn before you pass away.
Actually Floppy Disk or Tape Drive or Punch Card data is also private once professionally erased or burned.
I guess if you drop your phone in a hammer mill (not necessarily hammer it) it will destroy the microchip and whatever was on it.
E waste disposal companies can provide proof your old device is un readable after you give it to them they have a privacy contract.
What country? So I can avoid?
@@helloworld_2472depends on the phone graphene os is safe for instance unless your running a 2/almost 3 year old version
Thank you
PIN, with the right scramble software, seems best. Cops and other law enforcement officers have a harder time with pins than finger prints.
I have not heard were fingerprints where stolen and then used to unlock a device. But I can see it.
You should create a video about find my technology (both android and apple) and how safe it is!
I have a sneaking suspicion that it’s not super safe, much like the rest of the location services offerings.
But that too boils down to how far down the privacy rabbit hole you want to go. Would indeed love a video on that topic!
Its pretty sure privacy incompatible
Ideally, phones would have all three - pin, password, and biometric, and would use them appropriately in combination with one another and in conjunction with lost & stolen device recovery services.
Passphrase or PIN at startup to unlock device encryption. Ask for biometric too if there have been unauthorized attempts to unlock the device. Require passphrase instead of pin+biometric for first unlock if the device can't connect to determine its lost/stolen status, after 3 failed unlocks, or if the device is powered down or loses connection following an unsuccessful unlock.
Have the option to require PIN+biometric, biometric only, pin only, or either or depending on the user's threat model, and other factors like the length of time the device has been locked.
Be able to quickly change to higher security settings on the fly from the power menu so that if normally you'd just need a fingerprint, now you need that and a pin. Have a setting to make the device drop back to BFU on failed unlock attempts.
You could strike a much stronger balance between security, privacy, convenience, and consent with a more flexible authentication scheme, and it can be made user friendly.
That would be much better indeed. But most people can hardly spell their own names, and this extra security flexibility you’re proposing would be too much for them to handle.
What about a hybrid model where unlocking is done by fingerprint, but all the really important stuff like banking and password manager apps are protected by a password?
All banking apps I've used require a separate dedicated password. Venmo and I think Zelle do not.
Some banks use fingerprint. some use password, some use passcode, and some use a combination plus email,or text and then entering a code.
I wonder if using Apple parent control or repair mode can help restrict app access when you are out. Never hand your phone to someone unrestricted.
i much prefer fingerprint over face.
Also if not needing phone on, add and keep a simlock code that must be entered after you type pincode. So then turn phone completely off, you'll need more than the pin. I don't recall if simlock is for card or esim or both?
Android and Apple have vault features for files, drives, and apps.
My banking app will only care about the UID and password of my bank account--not the phone. It will allow whatever biometric device the phone has, but it will provide that option only after confirming the phone's password before the first use.
Fingerprint and password combo. Password to bring your phone awake from standby, then fingerprint.
Shared on all of my social media accounts, thanks so very much for the valuable info, Naomi
Thank you for sharing!
That's marvelous! Thank you for the wonderfully detailed analysis. 😊
In the US, it is settled. US Supreme Court Case: Riley v California - 573 U.S. at 394-95 (discussing the privacy concerns created by the vast amount of personal information kept on cell phones). Biometric scans are considered non-testimonial and do not require a warrant, similar to collecting fingerprints when booking a suspect, whereas a pattern or series of numbers is testimonial which would require a warrant.
Great video Naomi! One thing you didn't touch on (pun intended) is heavy sleepers with fingerprint unlock. Luckily that isn't me!
Thank you Naomi.
Your ACE!!
Super Grateful for all the work you do for us & the amount of research that go's into a video like this is Unreal , So i can not thank you enough for
All your Hard work
Big Fan from Ireland!!
Thanks so much!
Very helpful video with interesting insights. I am interested in Face-ID also. Better than Fingerprint? I don'tlike about Face-ID, that the camera must not be covered, so removing the little plate every time is annoying.
Excellent content.
I love the Mission: Impossible part, 2:40, 😂
Fingerprints are never taken back to HQ? Sounds like "Yes you can turn location off."
Fingerprints can also go away easier than people think.
How do you easily disable fingerprint on Android if getting stopped by authorities i.e.? On iPhone, it's pretty easy just pushing the power button multiple times
Thank you, Naomi! I greatly appreciate how you explain things and the flow of your video. Makes things very easy to understand.
From education on electronic security far, far away and long time ago (but it still applies well today): we were trained NEVER to use any biometrics for authentication, exactly because as you said it - biometrics are forever, unchangeable. We were trained for biometrics to be used only as the last (extremely consequential)action confirming step after authentications, both physical and electronic and multiple factors were used to be where you are and use what can be used there. Hence, for example to push big red button you needed to be identified&authenticated to be where it is and to use system on which it is but only for the very last act of pressing it biometrics will be used to document who acted upon. Unfortunately modern society jumped on sell-ability and false promises of security in biometrics... but then it is society where usernames are typically real names (another pet peeve - we were trained from day one not to have username in any way shape or form associated with who we are...)
You write a WHOLE BOOK 📖 just to say... "I was trained to use COMMON SENSE". You are REALLY special Mr. Special Ed graduate.😅
Would you consider making a video helping to create your own threat model? Would be great to see something along those lines in your style and could be useful for many people. Keep up the great work.
Very informative. Thank you for your hard work.
You can be in a situation where you are arrested with your device on hand and if you have secure it with fingerprint they can make you open the device by force. You don't have the option not to tell the password that way
Thanks Naomi! Very useful information on Touch ID. I agree that convenience is an important factor to consider.
Can you please tell me what degoogled or privacy phone you use? Also, I love your channel! I just subscribed! ❤❤❤
I would love a possibility to allow 2 FA fingerprint + pin requirements for certain applications. I have never seen the possibility though.
Thank you Naomi, your content is awesome as always 🙂
You can’t used fingerprint stored elsewhere. Fingerprints are stored as a hash, so I might use PI as the hash, I get a numeric value of your fingerprint then times it by PI. Regardless of the method used you end up with a numeric value which must match the store numeric value for that device.
If a “good” fingerprint is on the sensor you just need to apply body heat to the sensor and the device will unlock. You can wipe your fingerprint from the sensor, which defeats this attack.
I have currently an iPhone 13 with Face ID and a long password enabled. Should I disable Face ID or keep it enabled?
I also have a privacy screen and I don’t unlock my phone a lot. So I wonder if the convenience with Face ID makes my phone less secure.
No just exchange CRAPPLE for Samsung
@@DENVEROUTDOORMAN ahah very funny…
@Naomi Brockwell TV You look great as always, also have you seen the new Realme GT 5 Pro?
Which has the new Palm Print Unlock meaning it works with biometrics when you wave at the camera it unlocks with an advanced security AI feature.
Means it will only recognize your Palm Print and no one elses which is cool, Im thinking of getting this device.
Plus has a Heart Rate Measurement feature. wow.
Great content, as usual!
Naomi is the definition of both charm and elegance.
How about we comment on the information she delivers and not her looks. Given this is what the channel is here for
@@putnam120 How about I comment about what I want? 😮
@@putnam120agreed thanks to youtube you can see he posts many more creepy comments
Very interesting, I wasn’t aware for Samsung weak security. I still prefer Apple Face ID since it does not allow unlock while I sleep
My iPhone 13 only offers Face ID for biometrics. I’ve looked them the settings and can’t find anything for fingerprints.
Supposedly face unlock (at least the way Apple does it) is more secure than even fingerprints. Unlike most Android phones, Apple uses an IR emitter to draw a topographical (shape) map of your face for authentication where a lot of Android phones just use a camera and compare the picture to a stored image. The latter is much easier to defeat than the former. The IR emitter and receiver is why Apple hasn't been able to shrink the notch on the iPhone...the extra sensors need more space. They still use fuzzy matching like with fingerprint unlock so you can wear glasses or grow a beard without authentication failures.
@@Invid72its much easier to point a phone at someones face then push their finger the exact way onto it
@@linuxramblingproductions8554 Then turn on attention awareness. The phone will only unlock if you're looking at it and it can't be unlocked if you're sleeping for example.
@@linuxramblingproductions8554You apparently don’t understand how FaceID in iPhones works. It’s not just that it makes a 3D map of your face instead of just taking a picture, it also scans your eyes and it will only unlock if you’re actively looking directly at the screen. You can have your eyes closed or look 5cm aside and it won’t unlock. You can aim people’s iPhones at them as much as you want, but unless you force them to be lucid and actively look at their phone while you’re doing it, you’re not getting inside. There’s a reason why it’s described as the most secure biometric measure.
Good content (as always), but I’d also like to see a high level comparison with Facial Recognition at least in terms of the probability numbers as a reference.
why not plug in a ubikey to unlock your phone, change settings, etc
Those shirts are pretty cool. I may get one eventually :3
Hi, Naomi! Which would you prefer: Face ID or Touch ID?
Thanks so much for your support! FaceID I still have to dive into the security implications. I currently don't use it.
@@NaomiBrockwellTV You’re welcome!
Excellent info. Thanks, Naomi!
Lol... you so funny, love your videos.
😊 thank you
Devices I have seen will still ask for a pin on occasion during the day when you unlock them and not just after a restart.
learning a lot for my new phone.
Depending on the phone with a PIN it can be 5 or 6 digits and all the person has to do is start at 010101 then count upwards until they get the correct pin, it might take a long time but is achievable as the device normally doesn't lock the device after so many failed attempts. Face unlock even opens up with my grandson's face. Of the three fingerprint unlock I consider to be the safest but more than one person's fingerprint could unlock the phone as, I believe, it only checks certain points and if those points match up the phone opens.
I’d be interested in seeing the comparison of PIN/password vs face recognition as most phones these days have moved to facial biometrics over fingerprints, iPhones being a prime case. I’m not overly convinced of the security of the facial unlock due to the wide availability of photos surely enabling some kind of hack.
My favourite t-shirt is the one you wear 😅
Seems like with face recognition the law enforcement can unlock your device legally just by putting the device in front of your face 😊
Regarding the merch, I like both of the cat t-shirts. Leverage the cat love...
thank you
What about the pattern unlock?
Unless you get religious about keeping your phone clean I've seen people use the pattern of smearing to guess your pattern. I wouldn't use it myself.
I love your videos ❤
Fingerprint unlock is like begging someone to unlock your phone when you are asleep.
A simple social hack is to use a non standard finger (eg not your thumb or pointing finger) and possibly in a non standard position, at 90 degrees or upside down. Then when confronted say you don't use fingerprint, put your thumb on the scanner and say see.
I can see that working initially. But if one is rly keen on getting into your phone, for whatever the reason.. once they run out of options they might think of trying the rest of your fingers just in case. : D
@@sterix_ggsome like graphene os set a limit of five attempts before it blocks fingerprint unlocking
I guess I should stop using my pin as 1234 for everything then, , of course always something that many people just over look in so many ways, thanks on sharing.
Very true 👍
Apple hasn’t had fingerprint readers in new phones for years now. Could you do a video on face ID?
12:59 - Captions: "... and keePINg that PIN secret..." nice easter egg haha
Thanks
Thank you so much for you support!
What app do you recommened for the password number scramble?
Can we have similar video about apple's Face ID?
Great video Naomi❤
Also consider how short of a time it would take to try all of the 4 digit pins if there wasn't some sort of time delay to prevent the brute force attack. Then some devices will wipe after so many bad attempts. I know iPhones as far back as the 4S would wipe if you had too many bad attempts. There are ways to make them not wipe but it these are fairly complicated
that's so crazy that a fake fingerprint can unlock a phone when MY OWN fingerprints that I've scanned don't work
Thanks Naomi.
Thanks Ron
Wonderful ♥♥
With regards to 14:12 I have an idea - could there be an implementation of multiple profiles per phone (kind of like GrapheneOS) where a separate PIN automatically unlocks and opens a “dummy” profile?
For example, if coerced into unlocking your device, one could give the dummy PIN instead of the real one and unlock to a set-up, perfectly plausible phone setup with believable information (kind of like a “mugger’s wallet”)
You’d use a normal PIN otherwise but be able to unlock this dummy profile to satisfy coercive entities so you can leave
Why don't we have fingerprint plus pin completion? So one or two digits that need to be entered of a 6-digit pin after using fingerprint. Something you know + something you have + quicker access. Duress digit entered can either reset or open decoy screen.
Well Naomi my Google Pixel 6 Pro has this feature but it is extremely finicky on whether it works or not. Even worse is setting it up and this takes a VERY and frustratingly long time as the print is not always captured on the first attempt if at all!! I have tried repeating the same finger five times and even this does not mean the print will be accepted on trying to open the phone leaving me no choice but to use the PIN code. Now although you stated that the print is just for the opening of the phone I now find opening most of my apps some of which do not have anything to do with Google for example my government health system app, and I find that also so frustrating especially when you need to access the phone or app quickly. So for me it is more of an encumbrance more than a help.
Good video.
most people need security to protect stuff from relatives friends spouses etc. banking should be done on a dedicated device
Most people need security to protect phones from thieves and finders of a forgotten phone. Americans seem to need security to protect from relatives, friends, spouses and police. What a great society.
@@fuglbird where i live i never heard of someone having his phone stolen. tbh i feel bad for americans. they keep saying how great america is when it is not.
I use a 6-digit pin to unlock my phone running Graphene OS. I do use fingerprint to unlock some apps on my phone, however I consider my 6-digit pin the first line of defence
Thank you.
privacy screens are wonders for those who look over your shoulder.
I would love a succinct list of what is bloat ware and a actual way to remove it for good and prevent updates from re installing the junk
I use fingerprint on my Redmi Note, but you can (and must every 72h) unlock it with the PIN. Thanks to the video I tested, if brute forcing the PIN is possible. After three attempts there is a delay for 30 seconds before the next retry is possible. Good enough for me. If someone shoulder-surfs and gets my device, the damage will be acceptable. My banking app is using fingerprint to unlock and without the photoTAN generator it is only possible to view the balace. Aegis and KeePass also use fingerprint or 14+ character passwords.
And what about facial identification? How safe is that method?
A bit on coercion.
There's a possibility of getting your phone unlocked with biometrics when you're sleeping, by your family member, partner or your one night stand if you're into that. If you're concerned with that, don't use biometrics. But then you'll have to somehow explain or dismiss your distrust in them if they suspect something. It's not a concern with strangers I guess.
Fingerprints are forever means that the pattern stays the same. But in practice they are not so much forever. South African drivers licence cards include a fingerprint and must be renewed every five years. My previous one had my fingerprint but when I last renewed mine, the new card came back with "NO PRINT" in place of my fingerprint on the card. This led me to discover it wasn't a totally uncommon thing for older people as our fingerprints "wear out" as we age. More recently my Android phone has become very erratic in recognising my finger print. Some times there is no problem and others it will repeatedly fail and run out of attempts requiring PIN entry to unlock my phone. Two weeks ago I collected new cards at my bank and the biometric fingerprint system failed for several different fingers before finding one that worked. Our banks use the same government biometric system as the drivers licence fingerprints do.
stop *_talking_* about Graphene OS and start *_s.e.l.l.i.n.g_* Graphene OS phones already, *_with_* the regular 2 year warranty still intact
What we need is a self destruct code or a decoy code like Veracrypt has
I wish you would have covered pattern lock. That's what my phone uses on boot.
You forgot to mention the biggest weakness of fingerprint unlock:
Everyone who catches you sleeping while you have your phone on you can unlock your phone without coercion and without you ever knowing.
Any random sitting next to you on your long distance flight. Anyone at a party when you're passed out. Anyone at work, if you do naps there in your lunchbreak. Your partner or every one night stand.
What do you think about Element app?
Does selecting all sensors off on your phone make it untraceable
As I said got my figure print on my phone and my online banking and I have got a pin unlock for my sim card in case my phone gets stolen.
Takk!❤
Thank you for your support!
I use face unlock with a passphrase to unlock on my iPhone. During border crossings I press the power button 5 times quickly to disable face unlock until I enter my passphrase again. The passphrase is longish, but Apple only ages it out once a week so you're not constantly typing it in.
Why would u disable face unlock?
@@eventhough9119Because the last time I crossed the border the border guards pulled me in and when they stop you they make you leave your phone in the car. I don’t want anyone snooping through my phone. If Face ID is disabled I can’t be forced or tricked into unlocking it by some overly aggressive border guard. They can’t compel a password, and I’ll just go home.
Nah get Samsung
@@eventhough9119 Because I've been pulled in for a search before and the border guards tell you to leave your phone in the car. I don't want them to be able to hold up my phone to my face to unlock it. They're not allowed to force you to punch in your passcode to search it so I disable Face ID.
@@eventhough9119because you can be physically forced to face unlock, and a border crossing is a common instance where your rights are non-existent unless you have a way to enforce them.
Temporarily disabling face unlock means they need your consent to successfully search or tamper with your phone. You may still face consequences for refusing that consent, including arrest, detainment, or deportation, but by reintroducing "something you know" (your passphrase) as an element of explicit consent, it is your choice to make.
You can claim to not know it or to have forgotten it because of how rarely you need it. You may even have an actual scheme of not knowing or of only partly knowing, such as a yubikey that types half of your passphrase. You may even have a custom OS with duress passwords to either show a sanitized set of data or wipe the device, or both. The point is disabling biometric in a situation where you face non-consentual searches restores both consent and agency to you. What you do with that is up to you.
Good video but I wished you had included Galaxy phones more in your comparisons. There are more who have said phones than Pixels. Much more.
I think a possibly more important issue is: can we trust what companies say about their tech? They haven't proven to be very trustworthy lately.
We need a smartphone that runs a hypervisor with two virtual (guest) machines. One guest O/S having your full view of stuff; the other O/S for showing you just the bare minimum apps to make you appear like a very vanilla user. This way, coerced entry (law, boarder crossing) gets what they think they need to see while your true privacy isn't invaded.
I use screen time with all access, except Kode and FaceTime and the code to Screen Time is different in the lock screen code
When I was in my grad class for info management security law class we were told a finger or face is something you are. So since that’s the case in law speak you would be required to unlock or the officer are allowed to unlock your device using bio. A pass code or pass word is something you know and is be covered by 5th amendment or simply say I forgot. In the US.
So what about swipe patterns?
Hi, I got all this and I allsore got my sim card pin locked in case my phone is stolen ❤
Iris scanner is more secure than fingerprint. Like apple face id, but Iris is unique.
That 1000 digit pin you showed was alphanumeric. 😂
of course, we want our 1000 digit pin to be secure as possible! 😹
Could you do a video on Face unlock.
7:01 I wish Pixel would ramp the delays up faster.
What about leakage of the fingerprints???