GrapheneOS, a privacy and security-focused Android-based operating system, has posted a series of tweets on X suggesting that Android should introduce frequent auto-reboots to make it harder for forensic software vendors to exploit firmware flaws and spy on the users.
I don’t understand. So if I only lock my phone (turn the screen off) without rebooting it, it is not fully encrypted (considering that the device storage encryption is enabled)?
Something like that. I’m not familiar with the exact details, but there is an additional layer of encryption that applies before the first unlock after a reboot.
Parts of the OS have to be unencrypted for it to function properly.