At work I have access to a Nexus 7 which is shared between 7 members of our team.
I would like to be able to issue each potential user a uniquely-coded NFC keyfob that they can use to unlock the Nexus' screen and maybe set it up in particular ways.
Is this even possible? I know I can run apps once the device is unlocked, but I need to use NFC to get into it in the first place.
Yea I would say it is possible. The N7 supports various user profiles. You should be able to use Tasker to read the UID from each Tag and log into a specific profile.
You will need a custom rom/kernel because by default, NFC is off when the screen is off. A custom kernel allows NFC on all the time which can start taking commands and wake up.
I haven't messed with Tasker or Profiles. I would say it would just be a matter of logic "Read NFC and IF UID=1818181818181 then Load Profile 1" stuff.
I used NFC's coded with a URL with a unique ID to load a web page and pass the ID variable in to the server, which recorded your login and submissions. Pretty cool stuff. Just make sure you get good NFC's because the cheap ones aren't as powerful and becomes a chore trying to scan it.
The sweet spot seems to be the "N" of Nexus on the back.
Double post
Related
This is not troll baiting or OS Slamming...
Looking for knowledgeable and constructive feedback regarding device security. I'm thinking in terms of an Executive or VP or Network Admin or such loosing the device. a piece of software
1) to do more to control access than a squiggly line
2) to allow for remote GPS tracking and/or device data wiping
3) that is stealthy and/or hard to remove.
I know there are a few "security services" out there but that leads me into "how do i know whose who and who can be trusted in the android segment". I place a great deal of trust in the developer of my ROM. That he/she/they are benevolent and not including by intent or negligence loggers or other malware. then i have a companies like Wave and Norton and Good all angling to get installed on my device. i don't know Wave nor Good and I have no luv for Norton.
The EVO allows for RDC and VNC sessions. It allows for VPN access and has the pwd's to my personal and work email. meebo has me signed into all my chat networks. As a long time Windows person I guess it's just a lil disconcerting when i stop and think on it. this device can easily be configured to hold everything needed to access a secured network. Perhaps this is a reflection on my lack of understanding the system in depth. perhaps i'm not sure how well the opensource community will communicate "problem" apps and developers.
Also, and kinda sorta related. Applications in the marketplace. sometimes you get an application and the types of security access it is asking for seems a bit "off". occasionally in the comments the developer may comment that "i need to access X in order to provide Z". It usually makes sense (whether true or not i cannot say), but is there any nice cross-reference of what types of actions require what access level. or why so many apps need to know the phone state and identity or general location or full network access and what exactly that means to me as the end user. this second paragraph is proving difficult to put to paper..i may come back and edit for clarity.
and lastly, i guess is a question on how to protect from apps like this...
http://www.networkworld.com/news/2010/060210-android-rootkit-is-just-a.html?page=1
http://www.zdnet.com/blog/security/commercial-spying-app-for-android-devices-released/4900
If the app seems fishy don't download it you can allways get lookout from the market it will pull your phone up on the gps and tell you exactly where it is I've tested you can also make it chirp real loud as for them accessing your phone put the pattern lock on in stead most thiefs are not hackers so they probably won't be able to access your phone even if you hard reset you still have to draw the pattern I mean unless they full root the phone and wipe it in petty sure you will be ok hope that helped
Sent from my PC36100 using XDA App
Lookout kinda falls into the same category at Good or Wave. (at least to me thus far). All appear to be fine and yet somehow free products. I'm looking for a corporate solution, not end user solution. a free solution would be swell, so long as trust can be established.
i am looking at this from a corporate IT security perspective. not a young person, a enthusiast nor regular end user. heck, if I could get all of my users to actually know what is meant by "if the app seems fishy don't use it", most of my job would be completed. but to be honest, i'm still trying to get a grasp on that myself in the android world, hence the question about access levels in last paragraph of original post.
the zigzag is nifty and should protect from casual access. Froyo will provide an interface that a secured Exchange server would prefer to have. that will help.
( BTW ... if anyone knows how to make the red line not appear when you mess up the pattern lock...you'd be my personal hero for the day)
its not thieves that I'm worried about...it's my own end users that have to be protected from themselves. if a device was left in a bar or cab and did end up in the wrong hands....data could be sold, deals could be lost, people could be embarrassed, with the type of data that 'can very easily' exist on these devices...network security itself can be compromised. and sadly, i must assume that a good many end users will disable security if they are able to. for the same reason they ***** at automatic screenlocks on their desktop/laptop computers.
would you rather your IT team "hope/pray/expect the device will be picked up by some incompetent/benign/lawabiding citizen" or the opposite?
i choose to prepare for the worst...hope for the best. not the other way around. hence, my questions.
Isn't remote wipe being built into froyo somehow? Thought I read that somewhere.
I have my exchange email set up on my device and it requires me to use a passcode. I cannot disable it.
Sent from my PC36100 using XDA App
As for wiping data remotely wave secure will do that it might be close to what you need or something for the time being hopefully this will help
Sent from my PC36100 using XDA App
This is kinda sorta what I'm lookn for.
http://www.downloadsquad.com/2010/06/28/understanding-the-android-market-security-system/
so i just my new galaxy nexus and to check my work email (through an app called lotus), it checks my phone to make sure i have a 10char+ complicated password set. as you can imagine, having to enter a 10char+ complicated password everytime you want to get to your phone is annoying. is there a way to bypass this? i am rooted...
The password is thought, to kep the phone safe. Just make an easy password, and leave it be. And why not just use the mail app, that is shipped? It's good enough.
familyguy59 said:
The password is thought, to kep the phone safe. Just make an easy password, and leave it be. And why not just use the mail app, that is shipped? It's good enough.
Click to expand...
Click to collapse
company requires us use lotus and requires password to be extra strong
unknown00 said:
company requires us use lotus and requires password to be extra strong
Click to expand...
Click to collapse
So let me make sure this is clear: You are asking for help on bypassing security enforced by your employer, without discussing it with the administrative/tech support team? You are aware that many businesses have clauses that if you bypass their security, you can loose your job over it.
Honestly, I would attack this problem from the other end. Go to your manager and put a business case on why having such a strong password on a mobile device is not needed. Do your research and go in detail about how secure different passwords can be, look at the app, see if there is an auto-wipe for # of incorrect password attempts (if you can't brute force it, then a weaker password might just be as good). Mention the enhanced security the nexus device has (full device encryption), etc etc etc.
If you do it right, you will get recognition for being a forward thinker, for following the rules, and if successful, for saving the company money on their bottom line.
I do IT support and if one of my users by-passes my security, I'm talking to their boss and will SEVERELY restrict anything they do down to the bare minimum needed for the job.
It's also possible that you are in a position where you e-mail is highly sensitive and the risk of having that e-mail fall into a competitors hand is so great, that these security needs are required.
You can set the timeout b4 you are asked to enter your password again. I did it when i was on 4.0.2, but I can't remember where or how i did it though.
manager hates the pw requirement too and wants to get rid of it. it's something corporate put up that everyone complains about. there is nothing i can do personally as the company is too large. i just want to figure a way around it if possible
Herman76 said:
You can set the timeout b4 you are asked to enter your password again. I did it when i was on 4.0.2, but I can't remember where or how i did it though.
Click to expand...
Click to collapse
Bump, in case you missed it since we answered simultaniously.
unknown00 said:
there is nothing i can do personally as the company is too large.
Click to expand...
Click to collapse
And it's that attitude that will prevent any changes from occurring.
Personally, I worked at a company of about 100,000 people that has an international presence. I was successful with a BPI project where we licensed an application to manage multiple monitors (this is before win7) I had to show that the increased productivity offset the cost of the application.
Matridom said:
And it's that attitude that will prevent any changes from occurring.
Personally, I worked at a company of about 100,000 people that has an international presence. I was successful with a BPI project where we licensed an application to manage multiple monitors (this is before win7) I had to show that the increased productivity offset the cost of the application.
Click to expand...
Click to collapse
i work in a company of 400000+ internationally and is one of the largest IT companies in the entire world (take a guess ) but in all seriousness, it's not possible that 1 person can get rid of pw requirement. sry, don't argue that point
Figured it out. If you set security to pin (I only tested it with pin), you will get an option to choose timeout b4 you will get asked for pin again.
Combined with short timeout for screen off, I think this will be a good workaround.
Sent from my Galaxy Nexus using Tapatalk 2
Herman76 said:
Figured it out. If you set security to pin (I only tested it with pin), you will get an option to choose timeout b4 you will get asked for pin again.
Combined with short timeout for screen off, I think this will be a good workaround.
Sent from my Galaxy Nexus using Tapatalk 2
Click to expand...
Click to collapse
i understand this is a "workaround" that may work but i'm looking for a permanent fix to get rid of it as a whole
I know that if I load up the info, I can create wifi tags which allow me to let people on my wifi network without giving them a code.
Would it be possible to create a temporary code so that people don't have permanent access to my wifi network?
I don't think this is possible, the only way to give them access to your Wi-Fi for a limited time is to change the password.
Sent from my Nexus 7 using xda app-developers app
Pretty sure you can put an expiration on them the way that hotels do for NFC room keys so that the tag pretty much wipes its data after a certain amount of time.
Hotel keys don't wipe themselves. The hotel key system invalidates the tags when the guest checks out. I'm "pretty sure" there is no way to program a tag to expire itself.
I've been using Tasker for years and the Secure Settings app is an awesome addition to it. That being said recent changes to Android have hampered some of the options these great apps provide for us end users. One that bothered me the most is that if you use one of these apps to turn off the keyguard, any notification click (which may or may not include otherwise entering apps that have an active notification since that would clear the notification) would turn the keyguard right back on.
This is annoying and I googled some workarounds that didn't really work for me. I went digging and found a few links about getevent and sendevent for simulating input code that Android recieves when you do something. I realized that removing the S-pen always triggers the display to be unlocked (I'm not sure about pin or pattern because I don't use those). So anytime you want the effect of the keyguard being off, just setup the code for the S-pen being removed anytime the display turns on in addition to whatever variables you have setup.
In my case I wanted the keyguard to be off when I am home and connected to my WiFi. I created a profile with the context being connected to my specific SSID and made the task a variable set %HOME to 1. I made another profile With the context being variable set %HOME matches 1 and a display on event. For the task I went to plugins > secure settings > edit > run command enter the command
sendevent /dev/input/event12 5 14 1
sendevent /dev/input/event12 0 0 0sendevent /dev/input/event12 5 14 0
sendevent /dev/input/event12 0 0 0
I'm not sure if root is necessary, but I checked the Root checkbox. Give your command a name, save the profile and you should be good to go. Any questions about this or anything else about Tasker I would be happy to try to assist. Hope you guys enjoy.
will this work for the galaxy S3? it didn't have the S-Pen
klau1 said:
will this work for the galaxy S3? it didn't have the S-Pen
Click to expand...
Click to collapse
I'm not sure about that. I do know that sometimes different models in the same company may share code and since Tasker's Dpad up and down work for phones that don't have keyboards it's worth trying. I don't see any harm in trying it out, but since the S3 doesn't have the sensor I can't guarantee that it will work.
jadoe05 said:
I've been using Tasker for years and the Secure Settings app is an awesome addition to it. That being said recent changes to Android have hampered some of the options these great apps provide for us end users. One that bothered me the most is that if you use one of these apps to turn off the keyguard, any notification click (which may or may not include otherwise entering apps that have an active notification since that would clear the notification) would turn the keyguard right back on.
This is annoying and I googled some workarounds that didn't really work for me. I went digging and found a few links about getevent and sendevent for simulating input code that Android recieves when you do something. I realized that removing the S-pen always triggers the display to be unlocked (I'm not sure about pin or pattern because I don't use those). So anytime you want the effect of the keyguard being off, just setup the code for the S-pen being removed anytime the display turns on in addition to whatever variables you have setup.
In my case I wanted the keyguard to be off when I am home and connected to my WiFi. I created a profile with the context being connected to my specific SSID and made the task a variable set %HOME to 1. I made another profile With the context being variable set %HOME matches 1 and a display on event. For the task I went to plugins > secure settings > edit > run command enter the command
sendevent /dev/input/event12 5 14 1
sendevent /dev/input/event12 0 0 0sendevent /dev/input/event12 5 14 0
sendevent /dev/input/event12 0 0 0
I'm not sure if root is necessary, but I checked the Root checkbox. Give your command a name, save the profile and you should be good to go. Any questions about this or anything else about Tasker I would be happy to try to assist. Hope you guys enjoy.
Click to expand...
Click to collapse
Can you explain the command a little more? I copy / pasted, removed formatting code...and get 2 responses when running. Are there two commands there, one for S-pen in and one for out? Pretend you're explaining it to a special needs 3rd grader.
Tasker is a newer app for me, and still don't understand the variables, scenes, etc.
Thanks for any help you're willing to provide, and sharing your idea.
-- Note II, TapaTalk II--
JVogler said:
Can you explain the command a little more? I copy / pasted, removed formatting code...and get 2 responses when running. Are there two commands there, one for S-pen in and one for out? Pretend you're explaining it to a special needs 3rd grader.
Tasker is a newer app for me, and still don't understand the variables, scenes, etc.
Thanks for any help you're willing to provide, and sharing your idea.
-- Note II, TapaTalk II--
Click to expand...
Click to collapse
Yes there are two commands. Two lines to a command. The 0 0 0 parts are required kind of like telling the system that the command is complete (as best as I can explain it right now). The first two lines simulate s-pen removed. This is what we really need as it will automatically unlock the screen. I have not tested to see if the second command is necessary, but with my experience in programming I always follow the rule of thumb to set everything back to normal. The easiest way in my opinion is to use the Secure Settings app in addition to Tasker rather than just Tasker.
What other questions did you have about Tasker? Maybe I could help out.
jadoe05 said:
Yes there are two commands. Two lines to a command. The 0 0 0 parts are required kind of like telling the system that the command is complete (as best as I can explain it right now). The first two lines simulate s-pen removed. This is what we really need as it will automatically unlock the screen. I have not tested to see if the second command is necessary, but with my experience in programming I always follow the rule of thumb to set everything back to normal. The easiest way in my opinion is to use the Secure Settings app in addition to Tasker rather than just Tasker.
What other questions did you have about Tasker? Maybe I could help out.
Click to expand...
Click to collapse
TapaTalk didn't notify me of any updates in this thread...just happened to be browsing through. I never did get it working though. I'll have to go have a look at my Tasker profiles to see what part I got stuck at.
-- Note II, TapaTalk II--
JVogler said:
TapaTalk didn't notify me of any updates in this thread...just happened to be browsing through. I never did get it working though. I'll have to go have a look at my Tasker profiles to see what part I got stuck at.
-- Note II, TapaTalk II--
Click to expand...
Click to collapse
How are you trying to set it up?
Off topic, but I'm still confused on exactly what secure settings actually does on top on tasker?
Sent from my SPH-L900 using xda premium
Subiegsr said:
Off topic, but I'm still confused on exactly what secure settings actually does on top on tasker?
Sent from my SPH-L900 using xda premium
Click to expand...
Click to collapse
Secure settings is basically a plugin that can do things that Tasker either hasn't implemented yet or just can't do
jadoe05 said:
Secure settings is basically a plugin that can do things that Tasker either hasn't implemented yet or just can't do
Click to expand...
Click to collapse
I don't want to hijack your thread, but I was just wondering if you've found a way to detect the removal of the pen from within Tasker? Pent has basically stated that he can't/won't do it here: Google Groups
Back on topic, I've just been using the "PatternLock" enable/disable in Secure Settings to turn on/off the keyguard when I'm home/away. Works most of the time, but I'm using "wifi connected" to determine if I'm at home, and occasionally I lose the wifi connection at home when the phone sleeps, turning the pattern lock back on. Still it works enough to keep me happy.
bkimbel said:
I don't want to hijack your thread, but I was just wondering if you've found a way to detect the removal of the pen from within Tasker? Pent has basically stated that he can't/won't do it here: Google Groups
Back on topic, I've just been using the "PatternLock" enable/disable in Secure Settings to turn on/off the keyguard when I'm home/away. Works most of the time, but I'm using "wifi connected" to determine if I'm at home, and occasionally I lose the wifi connection at home when the phone sleeps, turning the pattern lock back on. Still it works enough to keep me happy.
Click to expand...
Click to collapse
There is an app called s-pen helper that i believe is either on XDA or on the market it is compatible with Tasker you can detect the pen that way.
jadoe05 said:
There is an app called s-pen helper that i believe is either on XDA or on the market it is compatible with Tasker you can detect the pen that way.
Click to expand...
Click to collapse
Excellent! Thank you very much, that's exactly what I was looking for!
Just a heads up. Tasker is on sale now for $1.99 right now. (I think it was originally $6.50)
Sent from my SPH-L900 using xda premium
I have a project (NFC Vending machine) based on Arduino which calls a function called nfc.readPassiveTargetID(PN532_MIFARE_ISO14443A)
Which returns a simple UID of the device that is tapped to the NFC antenna. This is used to identify the user, display their name and account balance, relay to coin acceptor and then saving the new balance back to an SD card.
This application works perfectly with my Nexus 4, a friend's stock Nexus 4, as well as any NFC Tag.
When I try using a new Galaxy S4 however, the application finds an ID from it, however it CHANGES every time it's scanned? Does anyone have any idea how to stop this from happening? I'm not opposed to writing an app if I can write an app that stops this from happening (some function in code that can set the UID to a static unchanging value, maybe using wifi mac address as a base)?
When I try scanning a co-worker's Droid DNA, NOTHING happens. NFC is on, beam seems to work, but nothing happens. I'm wondering if I install an app that reads/writes cards and tell it to perform an activity maybe that will 'wake up' the nfc chip making it active and forcing it to spit out an ID?
I have a feeling I'll have to use an "if id is not found, try ndef" and write an app that can send an ndef message that is the wifi mac address (so it'll be unique), though I haven't done much in the way of app development, though I'm very familiar with playing with all kinds of nooks and crannies in the filesystem to do fun things in android. I'm not opposed to learning, and have been trying, just not too familiar with java which certainly doesn't help... In any event, I'll be diving in and punishing myself with more hours of reading soon...
I realize this is a rather unique project and I may not find a resolution here but any ideas anyone can offer would be a big help. In the meantime I'll continue reading up on the various actions that are available to the programmer regarding nfc in the android sdk...
Thanks for any suggestions!
EDIT: I forgot to add, while I realize NDEF is an option (one that will require me learning a fair bit), it adds a great degree of difficulty in working with Arduino, which doesn't seem to have much in the way of libraries/code for handling NDEF, particularly peer-to-peer...