Privacy Guides @lemmy.one MoonlightFox @lemmy.world 2w ago

How to protect against someone forcefully unlocking my phone and password manager with biometrics?

I really like the convenience of using fingerprint unlock for lockscreen and password manager. I do however don't like the thought of being forced to unlock both physically.

I use Android with GrapheneOS.

I have set up lockdown, but it takes some time to hold the power button and then click lockdown.

Any creative solutions?

35 comments

Since you're on grapheneos you could always set up the 2 factor unlock when using biometrics. You would then unlock your phone using fingerprint and a pin. This way even if you're forced to unlock the device they'd still need your secondary pin to unlock. The pin can be much shorter than your main password so its still fast to unlock.
- Wow ty , had mine off for unlocking screen since i got this phone , wasnt visible until i turned on unlock with fingerprint :)
- wow I've been waiting for this feature on smartphones.... feels like been waiting for centuries!
  
  thank you for bringing this up!
As others have said, the most secure option is to not use biometrics.

However an app like private lock might be a decent compromise

Edit: I just noticed that private lock seems to not have a new release in a few years and should probably be considered orphaned. So I might recommend ParanoidsPal-PrivacyLock instead
- Great app, just installed it. The default amount of movement is perfect. Now it's really easy to prevent being physically forced to unlock, and theft
- I use Paranoid's Pal, a similar app. It's great. In addition to locking in response to motion, I have it set to automatically lock the phone a few minutes after the screen turns off.
  
  This also seems nice. I'll probably test this one as well. I like the lock after x amount of time feature. The pictures have max 15 minutes, so that might be too little, but maybe it'll work
  
  automatically lock the phone a few minutes after the screen turns off
  
  Isn't the default behaviour of phones to lock as soon as the screen turns off?
- Isn't this basically the same as Android's theft detection lock?
  
  I am running stock Android and have no idea what that is. But this forces your phone to use your none biometrics unlock after it senses acceleration.
- Requirements - Device admin permission for locking screen.
  
  Does this mean it requires root access (which brings additional security concerns) or just that a non-restricted user needs to set it up?
  
  It doesn't require root. Device admin is different.
  
  I currently run this app on android 15 without root and it runs very well. However I just noticed that it seems to not have a new release in a few years and should probably be considered orphaned. So I might recommend ParanoidsPal-PrivacyLock instead.
Well, you could use the wrong finger. After 3 attempts, my GrapheneOS install brings up the password field, but you can go back to the lock screen and try 2 more times until it locks out of fingerprint unlock (so 5 times total). You could always hold the power button down while it's in your pocket or bag, pretending you are searching for the phone or something, and then lock it down as soon as you lift the screen up.
- Thats kinda interesting. If I use an unusual finger, and there is a limited amount of tries. I still get somewhat the convenience of biometrics, but can still massively increase the odds of too many attempts.
  
  That’s what I did when I had a fingerprint reader— I used a non-tip part of one of my fingers. So if “forced” I’d just work my way through my fingertips and it would lock out.
  
  This had the benefit that if someone had already watched which finger I used in the past, the print still wouldn’t match.
Disable biometrics.
Carry a lighter to remove your fingerprints if captured?
- Teeth work too...
  
  Damn they can unlock phones with toothprints??
- I don’t get this thread… if you’re captured they can ask for anything
  
  And in many circumstances you can choose/have a right not to answer.
Just... dont use biometrics for device unlock?? You can still use it for apps separate from device unlock
- Of course I can do this, but that is a major inconvenience when I unlock my phone hundreds of times per day.
Its built in in GOS. And duress pin as well. Best middleground for security, you can still use fingerprint for apps.
- In stock android 15 it looks like this.
  
  Seems it found its way there as well then. Think it was a GOS thing on 14
Ether way the new American government will threaten you with your family's death until you gave them the password
Lots of great answers. For iOS lemmy people, you can just press up volume and power button at same time to disable biometrics
How long does lockdown take for you?
It takes me less than 2 seconds (i checked).

35 comments