Android encryption system

Android users have been provided with two different types of disk encryption methods since Android 4.4. The older encryption method is called “Full Disk Encryption” (FDE) which encrypts the /data portion of the disk. The drawback to using FDE is that the disk is not accessible until the user provide...

Full description

Saved in:
Bibliographic Details
Main Author: Mok, Jun Wen
Other Authors: Lap-Pui Chau
Format: Final Year Project
Language:English
Published: Nanyang Technological University 2021
Subjects:
Online Access:https://hdl.handle.net/10356/149528
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Nanyang Technological University
Language: English
Description
Summary:Android users have been provided with two different types of disk encryption methods since Android 4.4. The older encryption method is called “Full Disk Encryption” (FDE) which encrypts the /data portion of the disk. The drawback to using FDE is that the disk is not accessible until the user provides their credentials which means multiple critical functions are not available. “File Based Encryption” (FBE) was introduced in Android 7.0 which allows files to be encrypted independently. This allows critical phone functions that do not require high security to be accessed before the phone is unlocked which solves the drawback of FDE. This project looks into both the encryption systems of FBE and FDE extensively and examines the Key Derivation Function (KDF) comprehensively to understand how the algorithm works. The goal of the project is the emulation the KDFs followed by using the keys generated to showcase encryption and decryption of various files.