GrapheneOS provides users with the ability to set a duress PIN/Password that will irreversibly wipe the device (along with any installed eSIMs) once entered anywhere where the device credentials are requested (on the lockscreen, along with any such prompt in the OS).

The wipe does not require a reboot and cannot be interrupted. It can be set up at Settings > Security > Duress Password in the owner profile. Both a duress PIN and password will need to be set to account for different profiles that may have different unlock methods.

Note that if the duress PIN/Password is the same as the actual unlock method, the actual unlock method always takes precedence, and therefore no wipe will occur.

Source: https://grapheneos.org/features#duress

  • jet@hackertalks.com
    link
    fedilink
    English
    arrow-up
    22
    arrow-down
    1
    ·
    edit-2
    6 months ago

    0118 999 881 999 119 725… 3.

    This is great, I would like to also see a duress fingerprint option.

    • Vik@lemmy.world
      link
      fedilink
      English
      arrow-up
      5
      ·
      edit-2
      6 months ago

      Unexpected IT crowd reference.

      I think the android dialler has/had an Easter egg when you type this number in

      E: the AOSP one still has it :)

    • Bahnd Rollard@lemmy.world
      link
      fedilink
      English
      arrow-up
      5
      ·
      6 months ago

      Good reference, I would set it to something shorter like 12345 (same thing an idiot keeps on their luggage). Keep your pin yours, but if you set the duress code to a default PW like that (and dont have kids that would just try the it at random) if the phone gets taken there is a non-zero chance that they just guess it and nuke the device.