answered
2015-10-18 01:23:15 +0300
If you enable the DEVICE lock. So the lock code that is asked to unlock your phone and not the PIN code when you boot it, you should be reasonably safe. As the only way to get to your data at that point would have to go through exploiting some service that might be running on the phone over wlan/data network. Which most likely would expose your data anyway as you might have it available in decrypted form when the phone is running.
On the USB side no data will be exposed when the cable gets plugged in with a locked device. It will in that case show up as an empty mass-storage device to allow for charging, until you unlock manually.
Recovery mode and bootloader unlocking etc require the device lock code also.
And as already pointed out in the comments. There are some things on the phone already which you could use to set up some kind of encrypted storage on the phone if you can be bothered doing the work required.
In short your data may not be on the most secure/encrypted/anti-NSA device out there, but otoh there is no obvious easy way to get to it. So you should be relatively safe IF you enabled the device locking and don't store the sensitive data on the SD card ofc ;)
@Lojja - I couldn't say for sure, how safe it is to store your sensitive data on internal storage, but you could give this a try; https://openrepos.net/sites/default/files/packages/500/truecrypt-7.1a-1.armv7hl.rpm - TrueCrypt is a software system for establishing and maintaining an on-the-fly-encrypted volume (data storage device).
This may not function correctly on SFOS 2.0 - if not, contact the developer directly - NielDK.
(Note* - this is CLI based, no UI).
Spam Hunter ( 2015-10-17 18:55:05 +0300 )editThanks for comment and the link to the port of TrueCrypt! Hope in the future such functionality will be build into SFOS.
Lojja ( 2015-10-17 19:53:22 +0300 )editDon't want to play the bad guy but
WARNING: Using TrueCrypt is not secure as it may contain unfixed security issues-The development of TrueCrypt was ended in 5/2014(Source: http://truecrypt.sourceforge.net/ ).For some weird reason SailfishOS contains the eCryptfs kernel module but not the userspace tools.
V10lator ( 2015-10-17 21:35:01 +0300 )edit