Password or PIN protection for opening app (local data encryption)

Trogvars · August 11, 2021, 1:59pm

Expected behavior

Password protection for opening Delta Chat with local data encryption.
Like in Briar app.

Actual behavior

Just open an app without any protection and passwords.

Example Images

2021-08-11_16-58-28

d0989348 · August 11, 2021, 8:28pm

some apps indeed have this feature, but IMO it’s not should be the responsibility of each app to protect themself, rather the responsibility of the OS.

darhma · August 11, 2021, 10:00pm

In previous versions of delta chat I remember that there was this feature but it caused some bugs and issues so it was removed. In addition, the phone should be encrypted at the system level so it is a function, in my opinion, quite superfluous.

Trogvars · August 20, 2021, 2:03pm

My opinion there should be a protection at app level in cases when you HAVE TO unlock your mobile in some reasons and pass it to some one.

chimken · May 29, 2023, 5:04pm

sorry to necro, but has there been any movement on this? having a passord that isn’t tied to devices adds another layer of security, especially on ios. It’s not prohibitively difficult to unlock an iphone if it has fingerprint set up, so another layer of security would be appreciated.

r10s · June 2, 2023, 9:08pm

meanwhile, there is some progress in encrypting the whole database at rest, this is added as an experimental feature. however, that is stuck a bit, currently, the few resources available are spend in other areas.

for the concrete iOS thing:

It’s not prohibitively difficult to unlock an iphone if it has fingerprint set up

if at risk and you have the phone a few seconds in your hand, you can press fast six times the “on” button. that disables fingerprint or face-id and is helpful in some situations. just in case some readers do not know

flourigh · October 2, 2023, 2:36pm

this is usefully, need it

noname · January 14, 2024, 3:10pm

and in addition to simple “lock code”
it would nice to have option “another lock code” by entered which we will be logged in deltachat “just like” we “just now” instaled it.
with empty list of contacts…
with empty list of mail accounts…

i try to explain why “we” want have “this”
“there” easily can be “situations” when someone “CAN” force physicaly! you unlock - your phone and unlock your delta.chat - and better if there in delta.chat will be “nothing” - no chats no email - simply empty

encrypting the whole database it is good BUT! when many “around you” have physical supremacy over you - encrypting the whole database will not “help us”

DavidSM100 · February 2, 2024, 8:19pm

I also think that locking the app with password should be added to DC, many times you have to give your phone to others for some reason, and the phone password it is constantly used so it is easier for others people around you to get it.
This an app practically based in privacy and security so this should be an important feature to add.

db7m86s6e · February 1, 2025, 3:43pm

I agree. The ideal situation is that we have two passwords: the first one opens application, and the second one erases everything when entered with hot emails to friens.

guland2000 · February 3, 2025, 4:30pm

At the device level, why not, but I would like another function - if the PIN code is entered incorrectly, all messages will be deleted! That would be correct!

adbenitez · February 12, 2025, 12:37am

I think for that situation is better to have some panic button that would uninstall the app completely, that way when you are forced to unlock the phone, the app isn’t even installed, because even the fact of having the app installed and “empty” is already suspicious more when this feature will eventually be known by the people that are forcing you to unlock the phone and they will just hit you harder to use the real password next time

and such panic button is something that is already offered by some systems like CalyxOS which you would want to use anyways in such situations, because the extra security features (auto-reboot if locked for X time etc)

not something that should be solved in Delta Chat itself

ajypz7p5y · March 3, 2025, 9:18pm

Each profile must be stored in separate encrypted containers. Each profile must have two passwords. The first one is for decryption and opening. The second one is for erasing the contents of this profile.

ajypz7p5y · March 4, 2025, 7:35pm

I think that in addition to increasing privacy, this method of storing profiles in separate encrypted containers will allow us to easily transfer them between devices.

Commode1340 · March 25, 2025, 11:36pm

I still think it makes a lot of sense to do something “basic” on the app level. I like how SimpleX does it. Let the user set a pin (not limited to 4 numbers) to open the app. After they did that they also have the option to set a pin that deletes everything in the app and opens a fresh DC.