Fingerprints or values derived from fingerprints cannot be used as a key to decrypt ...

npub1hxx…g75y

2025-02-01 13:47:03

in reply to nevent1q…2zaj

Fingerprints or values derived from fingerprints cannot be used as a key to decrypt the device because they naturally change all the time and also risk being destroyed from injury. Technically impossible to do and also very difficult to preserve. It needs to be a static credential that doesn't change like a key derived from a passphrase or PIN.

> Isn't it easier to extract password or PIN than fingerprint?

The device doesn't store your PIN or password. It generates a long, secure key derived off of the input and then if it is correct the keys are stored in RAM to allow decrypting data to use it. When the device is in "Before First Unlock" a secure passphrase makes credential-encrypted data extraction impossible because keys aren't in memory.

If the device was in "After First Unlock" then those keys are in RAM and data is accessible regardless of the unlock method used providing there's an exploit to bypass the lock screen. Cellebrite's exploits do this with the original Android OS and some iOS devices and they don't need to know fingerprint, password etc. Their tools don't work on GrapheneOS but we have the automatic reboot feature for this reason as a protective measure.

Author Public Key

npub1hxx76n82ags8jrduk0p3gqrfyqyaxnrlnynu9p5rt2vmwjq6ts3q4sg75y

Seen on

Show more details

Published at

2025-02-01 13:47:03

Kind type

1 Short Text Note

Event JSON

{ "id": "fae2d0250bf39ad0fe33b9a9d91188e256d3e2fa418dbc30f59d6841a0f7dbb8", "pubkey": "b98ded4ceaea20790dbcb3c31400692009d34c7f9927c286835a99b7481a5c22", "created_at": 1738417623, "kind": 1, "tags": [ [ "e", "053a1d8f12b5c98ddf63e259f0390ea77de995cdd3b5f38fe71e85b4a399fad4", "", "root" ], [ "e", "eb6fbbcb423d5617a9e18421d0538a85581c56dd82bdfa121950d5dc0e263750" ], [ "e", "a49ab092e2ad2288a2fa2c7f4b375ed701e85e1266062dcd9d01d10e40812062", "", "reply" ], [ "p", "b98ded4ceaea20790dbcb3c31400692009d34c7f9927c286835a99b7481a5c22" ], [ "p", "a82f21d8ac33fc737aa0c52f3d9f837aea75b33d0b357f52570e1dfd26b5ac07" ] ], "content": "Fingerprints or values derived from fingerprints cannot be used as a key to decrypt the device because they naturally change all the time and also risk being destroyed from injury. Technically impossible to do and also very difficult to preserve. It needs to be a static credential that doesn't change like a key derived from a passphrase or PIN.\n\n\u003e Isn't it easier to extract password or PIN than fingerprint?\n\nThe device doesn't store your PIN or password. It generates a long, secure key derived off of the input and then if it is correct the keys are stored in RAM to allow decrypting data to use it. When the device is in \"Before First Unlock\" a secure passphrase makes credential-encrypted data extraction impossible because keys aren't in memory.\n\nIf the device was in \"After First Unlock\" then those keys are in RAM and data is accessible regardless of the unlock method used providing there's an exploit to bypass the lock screen. Cellebrite's exploits do this with the original Android OS and some iOS devices and they don't need to know fingerprint, password etc. Their tools don't work on GrapheneOS but we have the automatic reboot feature for this reason as a protective measure.", "sig": "54bc1ae23f38665e70ede8afdf627ce46f611dd7811e16c677140a297959e0e4039db435dae98687e9eff382c08958f1b281487b25c0f14b77f9a0471b46f361" }