0

Is encryption on iPhone enabled by default even if there is no lock screen password?

IconDaemon
  • 19,234
Iphoneuser
  • 1
  • Quoth Apple: For better security, set a passcode that needs to be entered to unlock iPhone when you turn it on or wake it. Setting a passcode also turns on data protection, which encrypts your iPhone data with 256-bit AES encryption. (Some apps may opt out of using data protection.) – IconDaemon Jun 12 '22 at 19:29

1 Answers1

1

It depends on what you mean with encryption. The filesystem is encrypted at all times, even though it doesn't look like that to apps: to apps, the files appear normal but they are always stored encrypted on the flash storage.

Content in the keychain may be encrypted in memory or not, but access permissions may be different depending on whether the device is locked or not. Developers can mark each entry their apps write to the keychain with the required permissions (see the Accessibility Values section).

All of this is completely independent of your device password.

The Apple Apple Platform Security Guide (see also the main page) has a lot of details about the security architectures. Unfortunately, I couldn't find details about purely local keychain content, but iCloud keychain content is encrypted using a key derived from your account password and a device-local key stored in the Secure Enclace. See the whole "iCloud keychain" chapter and in particular, the "How a user’s other devices are added to the syncing circle" chapter for details. I suspect the local keychain content is also protected by the same device-local key but this is just a guess, I'm afraid.

DarkDust
  • 3,186