Foil Pics
Foil Pics allows you to encrypt some pictures from the gallery with a password stronger than the lock code. Strictly speaking, each picture is encrypted with a unique random 256-bit AES key which in turn is encrypted with an RSA key which in turn is encrypted with your password. If the bad guys get your encrypted pictures, they would have to crack the AES key (different for each picture) or the RSA key (shared by all pictures but harder to crack) in order to extract the content. If they get the encrypted RSA key as well, then they can brute force your password. So in the end, the encryption is as strong as your password.
The format of the encrypted file is described here. The encrypted files are stored in ~/Documents/FoilPics.
The RSA key is shared with Foil Notes and Foil Auth apps. It's stored in ~/.local/share/foil/foil.key - you can copy it from one device to another. Using the same RSA key on different devices, protected with different passwords, is actually not such a bad idea. If you forget the password, you can use the backup key to decrypt the images, assuming that it has a different password that you still remember.
Note that you can add your encrypted files and the Foil key to the backup with the help of My Backup app.
Source code: https://github.com/monich/harbour-foilpics
Screenshots:
Category:
Keywords:
Application versions:
Changelog:
- 1.1.4 (Oct 13 2024)
- Use wakeup timer for auto-lock
- Added UI for configuring auto-lock delay
- Tweaked cover page UI
- Minor UI fixes and improvements - 1.1.3 (Aug 20 2022)
- Fixed deletion of multiple gallery photos
- Minor UI tweaks - 1.1.2 (Jun 24 2022)
- Tweaked group/folder UI - 1.1.1 (Jun 18 2022)
- Made encrypted image groups expandable
- Allow to turn autolock off
- Minor UI tweaks - 1.1.0 (Mar 22 2022)
- Opt out of sandboxing (no more Jolla Store updates)
- Added Chum metadata
- 1.0.23 (Nov 27 2021)
- Decryption corner cases (handle missing directory, avoid overwriting)
- Delete multiple gallery images more accurately
- Assorted UI tweaks - 1.0.22 (Nov 14 2021)
- Load libcrypto.so dynamically in 32-bit builds - 1.0.21 (Nov 6 2021)
- Link OpenSSL 1.0 statically for compatibility with Sailfish OS 4.3 - 1.0.20 (Oct 24 2021)
- Optimization (avoid creating unnecessary sharing components) - 1.0.19 (Oct 24 2021)
- Support for the new out-of-process sharing
- Updated Polish translation (Atlochowski) - 1.0.18 (Sep 8 2021)
- Link all Qt_5_PRIVATE_API functions dynamically - 1.0.17 (Jul 25 2021)
- Allow to copy image details to clipboard
- Handle the case when in-app sharing is unavailable - 1.0.16 (Mar 27 2021)
- Added image details item to the context menu
- Miscellaneous UI tweaks
- Provided 64-bit package - 1.0.15 (Feb 19 2021)
- Fixed selection of multiple encrypted photos (Juho Hämäläinen)
- Integration with My Backup - 1.0.14 (Nov 21 2020)
- Adapted to changes in Sailfish OS
- Polished landscape layouts
- Fixed EncryptedPage hint behavior
- Replaced Animators (which suck) back with Animations - 1.0.13 (Jan 5 2020)
- Delay autolock by 15 seconds
- Tweaked key generation UI
- Improved Chinese translation (@dashinfantry) - 1.0.12 (Dec 4 2019)
- Updated Chinese translation (@dashinfantry) - 1.0.11 (Dec 4 2019)
- Fixed details view for unecrypted pictures
- Better check for password being too short
- Minor UI tweaks - 1.0.10 (Nov 9 2019)
- New selection UI
- Improved landscape layouts
- A few fancy bells and whistles here and there
- Translation fixes
- Chinese translation (@dashinfantry) 1.0.9(broken)- 1.0.8 (Nov 11 2018)
- Support for light ambiances in Sailfish 3.0
- Minor UI and performance improvements - 1.0.7 (Jun 23 2018)
- Freshened up the list of sharing methods
- Use attached pages in the main view
- Trying to improve QML performance
- Avoid unnecessary overwrites of info file
- No more ContextMenu deprecation warnings
- Updated French, German and Polish translations - 1.0.6 (Mar 4 2018)
- Fixed compatibility with Sailfish OS 2.0
- Performance improvements - 1.0.5 (Feb 16 2018)
- Fixed a problem with deleting multiple encrypted pictures
- Proper support for images larger than maximum texture size
- Added Hungarian translations
- Updated French translations - 1.0.4 (Feb 14 2018)
- Support for multiple selection
- Encrypted images can be grouped
- Dutch translations
- Polish translations
- Spanish translations 1.0.3(broken)- 1.0.2 (Dec 11 2017)
- Navigation between images in fullscreen mode
- Swedish translations
- German translations - 1.0.1 (Dec 10 2017)
- Details page for encrypted and gallery images
- Title of the encrypted image is editable (via details page)
- French translations - 1.0.0 (Dec 2 2017)
- Initial version
Comments
TMavica
Thu, 2018/02/15 - 13:24
Permalink
Yes, is fixed
minitreintje
Sun, 2018/02/11 - 00:04
Permalink
This is a great app! I only have some crashes when working with groups in the encrypted pictures. Adding to a group, loading groups, ... let the app crash :(
slava
Thu, 2018/02/15 - 02:06
Permalink
Version 1.0.4 should behave much better. Please let me know if you still manage to crash it.
slava
Sun, 2018/02/11 - 00:27
Permalink
Obviously, if I could reproduce the crash, I would've fixed it! Can you provide step-by-step instructions how to crash it?
Kelmi
Tue, 2018/01/16 - 22:42
Permalink
How I can brute force (or other way) my password when I forget password?
Maybe John the ripper is my friend.
This is little bit irrelevant to post here..
slava
Thu, 2018/02/08 - 19:49
Permalink
The private key is encrypted in an openssl-compatible way (e.g. when you specify the passphrase to ssh-keygen). If there is some software out there for brute-forcing such keys, it should work here as well.
Kelmi
Fri, 2018/02/09 - 02:36
Permalink
Awesome work, thank you! Very nice that you implement my request! I also want thank you for your information about my situation, so for now I will ask one of my fellow about cracking my password.
I will reward you as soon as I found your "donation address" ;)
DarkTuring
Thu, 2017/12/14 - 06:26
Permalink
From pulley menu add share to SMS, Email, Android App
Upon sharing it will automstically decrypt and cooy paste into shared space.
slava
Thu, 2017/12/14 - 16:19
Permalink
I was thinking about it too but in the end I didn't feel comfortable with saving encrypted pictures somewhere in the unencrypted form (other than via Decrypt action).
Kabouik
Wed, 2017/12/13 - 06:19
Permalink
Ir's useful for those who use Sailfish since years and may have hundreds or thousands of pictures, and more than a few to protect. I would certainly use it!
Thanks for this app!
Kelmi
Tue, 2017/12/12 - 01:03
Permalink
I wonder why there is no "select pictures to encrypt" selection.. :P
slava
Thu, 2018/02/08 - 19:42
Permalink
Multiple selection has been implemented in 1.0.3
slava
Tue, 2017/12/12 - 01:31
Permalink
I thought about that but it didn't seem particularly useful to me. But it's certainly doable.
slava
Sun, 2017/12/10 - 15:00
Permalink
Version 1.0.1 is identical to the Jolla store version (as is 1.0.0).
slava
Mon, 2017/12/11 - 20:27
Permalink
So is 1.0.2 and all upcoming versions until it's explicitely stated that OpenRepos and Jolla store versions have diverged.
jfebrer
Mon, 2017/12/04 - 22:00
Permalink
It would be great also for simple text files.
slava
Tue, 2017/12/05 - 00:47
Permalink
Foil Notes :) Hmm... why not?
cvp
Mon, 2017/12/04 - 13:22
Permalink
Thank you for the nice app!!
Are you planning to add support for videos as well?
slava
Mon, 2017/12/04 - 15:10
Permalink
Videos are significantly larger than images meaning that a) they don't fit entirely into RAM and b) decrypting the entire video would take considerable time. So they have to be somehow decrypted on the fly and fed into the video player, to avoid creating temporary files (readable by other processes). It's doable (e.g. by emulating some sort of a network stream) but it doesn't look like an easy task.
slava
Mon, 2017/12/04 - 15:43
Permalink
or alternatively, a decrypted video could be exposed via fuse filesystem, as a file available only to the current process. It's worth noting that in either case (fuse or network source emulation) decrypted data would have to pass through kernel, making it available for stracing by a sufficiently privileged process. That may not be acceptable to real paranoics :)
slava
Mon, 2017/12/04 - 15:46
Permalink
(continuing to talk to myself) Even though decrypted images never leave the app's address space, a real paranoic would still say that a sufficiently privileged process could read the app's memory and extract images from there. Oh well, there's no safe place in the world for real paranoics. This app is more about securing files in the internal storage than protecting against realtime hacking. If you have a rogue provileged process running on your phone, you are screwed anyway. So I guess either network emulation or a fuse file would be ok for the purposes of this app.
DarkTuring
Mon, 2017/12/04 - 04:37
Permalink
fantastic!!
ferlanero
Sun, 2017/12/03 - 17:35
Permalink
An absolute must to to protect your privacy! Thanks!
TMavica
Sun, 2017/12/03 - 17:07
Permalink
Nice apps!
Kelmi
Sun, 2017/12/03 - 15:44
Permalink
Awesome, thank you! I really like this app for my xperia x. ;)
Caballlero
Sun, 2017/12/03 - 02:18
Permalink
Nice; thanks for this.
t0t3u
Sun, 2017/12/03 - 01:25
Permalink
Great job!
minitreintje
Sat, 2017/12/02 - 23:33
Permalink
Great idea! Installing as we speak :)
Erdrandbewohner
Sat, 2017/12/02 - 20:30
Permalink
Great! Works perfect. Thank you! :)
slava
Sat, 2017/12/02 - 19:56
Permalink
With a few hacks I managed to make it compatible with Jolla Store, so it should appear there too at some point.
Pages