Setting: Disarm actually locks (temporarily?) #95
Description
Problem
If someone needs to step away from their computer while still working on decrypted, sensitive documents (eg to go to the bathroom), then there's a brief window of vulnerability between [a] disarming and [b] locking their computer.
Solution
Possibly a better solution would be to change the "Disarm" button into a "Toggle" button between a more-dangerous trigger (eg soft-shutdown) and a less-dangerous trigger (eg lock-screen).
Context
This was inspired by a recent comment on PeerTube
It's a great design, but I have to say I immediately expect the failure point will be the person who gets in the habit of disconnecting the loop from their belt so the can "quick grab a ketchup" that is out of reach, or run to the restroom. Enough times of that habit and then just once where you forget to manually lock and you're done. I definitely agree with your comment about activists, though - that seems like a perfect use case.
source: https://neat.tube/w/sRkFue3cH924j6Q1nuUAZG;threadId=8383
We actually already do something similar to this with the QubesOS "Disarm". I chose to make the "Disarm" not actually Disarm -- it just makes triggers for the next 30 seconds lock the screen.
UX Implementation
Perhaps add a simple checkbox to the Settings menu for "lockscreen" button
When this checkbox is enabled, then a new button is added to the main screen (when the app is armed with anything other than the lock-screen trigger).
I don't know what the button should say, but clicking it should temporarily change the trigger to the 'lock-screen' trigger for 30 seconds.
That way, there's a safer way to go to the bathroom:
- Click this new button
- Unplug the cable (within 30 seconds)
- Your machine locks
- Return to the machine
- Plug-in the cable
- Unlock the screen
As soon as the cable is plugged-in again, any removal event would trigger the originally-set trigger