Option to encrypt recordings by default #62
Comments
Lppsoeht
added
feature request
|
How encrypting audio files should work? Do you know any examples of how it's done by other apps?
Could you split it into separate request, so here we would only focus on encrypting files? |
Aga-C
added
question
I fail to see the purpose of such feature: phone storage is encrypted by default and anyone caring about privacy/security should be using a strong password/PIN to unlock the phone. If by third parties you mean other apps on your phone (meaning you don't trust them), then I'm not sure whether you should be using your phone for voice recordings at all... |
Standard gpg encryption, using a master password or biometrics. Examples: openkeychain app |
github-actions
bot
removed
the
waiting for author
|
More generally speaking, I think also apps like gallery and notes should focus on implementing real encryption when "hiding"/"locking" medias. By following desktop old school way of protecting information. |
|
Whats even the point of this issue? Someone please close this. |
Pardon me, who exactly are u to dictate that? |
@chesio, what's is the logical jump from distrusting applications to not record voice messages in my phone? I could disable/not use those hypothetical unsafe apps, I could use other user profiles, I could encrypt files. Android offers plenty of options. There are many ways for an attacker to steal a password, and it could be even as simple as shoulder surfing. The original repo's name was simplemobiletools, therefore the only reason I see to not accept this feature for most of FossifyOrg apps is to keep them simple and straightforward. And if it'll be that way that's okay. |
|
@Lppsoeht I would say my personal threat model would make me use a dedicated hardware for voice recording if I found myself not trusting my phone to save recordings unencrypted on the fly as you request. But I reckon that every person has a different threat model and related needs.
Yeah, because proper encryption is hard to implement. Tons of "secure" conversations have been released over years, not because they were decrypted, but because the encryption was not implemented correctly or simply the device has been hacked in a way that made possible to circumvent the encryption. I do trust Fossify devs to have a good knowledge of Android development, but would I trust them with implementing strong encryption? I don't think so. But again, it's up to every person's personal threat model which encryption tools he/she trusts or not.
That was what initially got me to comment on this feature request. One of main reasons I liked Simple Mobile Tools was that the apps were simple and without feature bloat that would take unnecessary storage and drain battery more quickly. So feature requests like this make me little aware :-) |
|
I see it a bit differently. It would be ok for me if there would be an encryption, but the problem is, that this should be a standard audio file format, that other apps can also open (after providing a password, like password encrypted zip). Does any standard file format like this exists? I don't know any. And if there's no standard audio file format like this, that I could open with VLC, MPV or any other player, Fossify Voice Recorder shouldn't do its own format creating a vendor lock-in. |
I mean, you wouldn't have to trust Fossify devs, android provides the tools, the code would be auditable so...
If implemented correctly, this feature would need to be active to drain battery, but yeah sadly I can see this as a reason to drop the feature. |
|
I have thought about this before (it is tempting) and I'm still conflicted whether or not to implement encryption in Fossify apps. Tibor even considered it once for the File Manager but I don't remember why it was postponed.
An alternative to encryption is to (optionally) save recordings to in-app storage which isn't accessible by third party apps (as long as you don't root your device). We have a similar option in Fossify Contacts. A note on security: Fossify/Simple apps weren't exactly designed with security in mind since it was mostly about keeping things simple. We rely on the platform for security. Any protection/lock is designed to keep the general population away, it won't stop someone with skills and time. Not long ago, there wasn't even a lockout period for passwords (see SimpleMobileTools/Simple-Commons#1824). If and when encryption is implemented (properly), the algorithm used and its implementation by the platform will be the main factor (and the password in case of password based key derivation which is what we'll likely use to keep things user friendly). I'll leave this open for now and reevaluate later. |
Checklist
Feature description
Toggle to set to encrypt voice recordings by requiring a password to access the app's data
Why do you want this feature?
People need to be able to at least discourage third parties from accessing recordings.
Additional information
The text was updated successfully, but these errors were encountered: