I’ve read through various posts here about DT and DTTG encryption and had a question that I did not see specifically covered.
As many of you may know, an increasing number of countries have laws which allow for digital device cloning/review at international borders. With that particular use-case in mind, how can I ensure that my DTTG data on my iPhone/iPad is not “cloned” as well?
[I’m not doing anything dodgy in my DTTG, it’s just that there may be sensitive intellectual property, contact details, and so on, that I’d rather not have to worry about being cloned, mishandled, and potentially exposed]
I have FaceID enabled for both devices, but I do not know if an unlocked device could somehow provide access to raw content on the local device that could be read as cleartext (so, for example, does enabling a PIN/FaceID on DTTG store the data encrypted until the PIN/FaceID is passed?).
Most device cloning is done after an initial unlock of the device OS itself, rather than requiring the owner of the device to unlock all applications that may have additional passwords/PINs/biometrics. But there are no guarantees, of course.
1Password has a Travel Mode whereby selected Vaults are purged from devices whilst travelling, removing any possibility that the content can be accessed or cloned.
I’m looking to create a similar experience on DTTG. It’s easier with DT, as I can just ensure that my Keychain does not have the DT database encryption passwords.
But with DTTG, I wasn’t sure how to best go about this. I’d prefer not to have to delete the app entirely and re-install it and re-sync it later, but, that’s obviously an option.
Thanks for any suggestions here!