Apps using Flag_Secure and Secure_display can block screencapture. While user apps stay below MDM apps in privilege. The MDN app themselves reside below the android system.
Do you have a source of MDM apps bypassing secure display and having the ability to capture the display?
Google maintains both the Pixel device management and Google Messages. Do you really think they would have locked their own MDM out of their own messaging app?
No, I saw, but the initial post is about RCS and Google’s MDM API. You’re fighting real hard over something Google has total control over. Signal might be fine, but if you’re not the device owner, you should always assume security is compromised in favor of the actual owner. With MDM, the company can install whatever they want on the device.
I won’t accept an MDM device for personal use. I was just replying about signal being compromised with regular MDM in work profile on a non-rooted phone.
Everything would still be monitored. But, messages in signal should not be.
This is why I carry two phones. My work phone is an iPhone managed by Intune. It does work stuff and only work stuff. My personal phone is a Pixel 9 Pro XL. It goes on a VPN when on work wifi.
I do not, nor will I ever, understand those who use their work-issued phone for personal things.
Apps using Flag_Secure and Secure_display can block screencapture. While user apps stay below MDM apps in privilege. The MDN app themselves reside below the android system.
Do you have a source of MDM apps bypassing secure display and having the ability to capture the display?
My dude.
Google maintains both the Pixel device management and Google Messages. Do you really think they would have locked their own MDM out of their own messaging app?
I was talking about signal. Did you miss that?
No, I saw, but the initial post is about RCS and Google’s MDM API. You’re fighting real hard over something Google has total control over. Signal might be fine, but if you’re not the device owner, you should always assume security is compromised in favor of the actual owner. With MDM, the company can install whatever they want on the device.
I won’t accept an MDM device for personal use. I was just replying about signal being compromised with regular MDM in work profile on a non-rooted phone.
Everything would still be monitored. But, messages in signal should not be.
This is why I carry two phones. My work phone is an iPhone managed by Intune. It does work stuff and only work stuff. My personal phone is a Pixel 9 Pro XL. It goes on a VPN when on work wifi.
I do not, nor will I ever, understand those who use their work-issued phone for personal things.