A forensics analyst has successfully rooted an Android 10 device and is trying to extract keys from the keystore with sophisticated tools. Why is she unable to extract the keys?
Choose an answer
Tap an option to check your answer.
Correct answer: Android 7+ devices with mandated hardware-backed keystores prevent key extraction on rooted devices..
Why this is the answer
Android 7.0 (Nougat) introduced and mandated hardware-backed keystores for devices meeting specific security requirements. This means cryptographic keys are stored and managed within a secure hardware module (like a Trusted Execution Environment - TEE) that is isolated from the main operating system. Even with root access, an attacker cannot directly access or extract these keys because the hardware is designed to prevent it. The keys are used within the secure environment and never exposed to the Android OS. Incorrect options: ADB tools are for device communication, not for bypassing hardware security. Key revocation would prevent the key from being used, but wouldn't explain an inability to extract it if it were accessible. Airplane mode affects network connectivity, not hardware-level key security.
Pass your exam — without the endless answer hunt
Get every verified question and explanation for this exam in one place, and save hours of prep. 1,000+ certifications · 20+ languages · free to start.
Pass your exam faster → No card needed