I’ve been working on personal security + privacy as I switch to GrapheneOS. Going well so far. I am looking for a good way to back up my password manager (bitwarden) and had the idea to use my now ‘old’ iPhone.
Is using my old iPhone to do this with say, Strongbox (i used to use it), a stupid idea? It seems okay to me. The only problem I’m thinking is that eventually the phone might not boot (battery issues from lack of use/charging) or might be susceptible to attacks due to not being patched after a while, but that’s not really something on my radar as long as I have the phone in my possession. It seems like it might be better than the alternatives, namely:
-
printing/writing copies and keeping in a safe (…that i don’t have)
-
keeping a copy, encrypted or possibly not, on a standalone drive (and keeping a portable password manager i can run on it as well).
My issue with the hard copy + safe is that I feel this is the easiest one to have something silly happen with. I could easily see myself putting it somewhere ‘safe’ and either losing it or disposing of it improperly.
The issue with the standalone drive is I feel I could easily forget/lose whatever passwords/PINs used to encrypt, and then it’s useless, or it gets lost/overwritten/breaks, etc–would not be the first time a flash drive was suddenly unusable in my experience.
The iPhone would still be able to use my biometrics as long as it could boot; nothing to forget. I probably wouldn’t lose it, considering i still have my other old phones, and if lost or in the wrong hands, the vault itself would still be encrypted, not to mention all the built-in security of the phone itself.
What do you think?