Do a restart (even if you have to hold the power button for 10 seconds). Because at initial boot state, the contents of your phone are encrypted. Any unlocks after the initial unlock, your phone is decrypted and the key is in RAM. Only a password/pin (no fingerprint/FaceID/etc) can be used to decrypt your data.
In lockdown mode, my understanding is that you’re simply disabling biometrics (but not encrypting anything).
Thank you. I say it because I was genuinely asking the person who replied to me, in case I was wrong. In the context of privacy, it’s extremely important to know for sure.
Do a restart (even if you have to hold the power button for 10 seconds). Because at initial boot state, the contents of your phone are encrypted. Any unlocks after the initial unlock, your phone is decrypted and the key is in RAM. Only a password/pin (no fingerprint/FaceID/etc) can be used to decrypt your data.
In lockdown mode, my understanding is that you’re simply disabling biometrics (but not encrypting anything).
Using lockdown is the same thing as restarting, it puts it into a BFU state.
Evidence/source? My understanding is you inherently cannot go back to BFU (before first unlock) state once you’re in AFU unless you reboot.
Again, I’m not talking about simply disabling biometrics unlock – BFU = your decryption key is not in memory yet (at all).
https://discuss.grapheneos.org/d/14081-what-does-the-lockdown-option-do
this seems to confirm what you’re saying.
Thank you. I say it because I was genuinely asking the person who replied to me, in case I was wrong. In the context of privacy, it’s extremely important to know for sure.