I’m looking for docs or a statement, where I can read about the handling of the encryption keys on the Librem 5. Especially regarding the FDE and /home encryption.
For instance, Android is somewhat problematic if it’s already turned on. Bruteforcing the pin is much easier than on iOS and not every Android derivative uses the new encryption scheme which is also not ideal in terms of security. This rather old blog article explains it pretty well, why encryption on Android is kinda broken.
Another question is, if the Librem does use some kind of a secure element to store secrets like a TPM or ARM TrustZone. If it has something like this, it would be possible (if there’d be enough dev-wo_men-power) to integrate it into cloud backup solutions like Google does it with the Pixel 3 nowadays or a lot of other usecases I can’t think of right now.