Google has announced a move to help protect a user's data when using the Android Backup Service. The data on your Android device is already protected when you secure your smartphone/mobile device with a lock code. Now the data you send to the cloud backup will also be protected by encrypting it with your lock screen password. Not even Google will be able to read your information. Beginning with Android Pie, Google will encrypt your Android backup data in the following way.
- Your Android device will generate a random secret key (not known to Google),
- The secret key will then get encrypted using your lockscreen PIN/pattern/passcode (not known to Google),
- This passcode-protected secret key will then securely sent to a Titan security chip on Google's servers.
The Titan security chip will control the encryption and decryption of the data by detecting the lockscreen passcode. The number of attempts will also be limited to prevent brute force attacks. Google is out in front to protect Android cloud data. Currently, Apple has the ability to decode iCloud data even though it has said user controlled encryption is coming. It looks like Google beat Apple to the punch.
E-mail: firstname.lastname@example.org Phone: 703.359.0700
Digital Forensics/Information Security/Information Technology