On Fri, Mar 4, 2011 at 11:17 AM, sebastian nielsen <[email protected]> wrote: > The keys should survive a compromise which consist of both rooting and > cloning a device. > Eg, If I leave my device on a table in a train, and one year later, > finds my device again, I should be sure that my keys are not > compromised. (If a adversial *uses* my key does'nt matter). > In other words, If I have my device in my hand, I want to be sure that > nobody has a copy of my encryption key, even if the device has been > compromised prior to getting the device in my hand. >
How is it OK if they use your key? If it were a signature key, and they could use it, they could impersonate you, log into your bank account and what not. Until Android devices come with a TPM, your best bet is to try what Marc is suggesting. -- You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/android-developers?hl=en
