[Feature Request] OpenKeychain as PGP key provider #1017
Description
Guidelines
- I have read the FAQ and it doesn't cover my request.
- I have searched the issue tracker for open and closed issues that are similar to the feature request I want to file, without success.
- I'm on the latest version.
- I'm not using a test build (alpha/beta/release-candidate).
- This issue contains only one feature request.
Problem Description
I understand that PGP encrypted scheduled backups require Neo-Backup to have both the key and it's passphrase, but keeping keys outside of the keyring (hardware backed one when possible) is not an actual option, at least from my point of view (especially given the fact that you also have to write them on the flash memory to import them). With current implementation PGP encryption is practically even less secure than password one, as aside from your data it exposes also your PGP key. Of cause one can also generate separate key for Neo-Backup (and set it as untrusted), but this is securitywashing.
Proposed Solution
Add support for OpenKeychain as a source for PGP encryption keys. It is pretty much the standard PGP keychain on Android and it is weird to see PGP supporting app that can't work with your PGP keychain. As for scheduled backups you may add an option to make them unencrypted or password encrypted for those who refuse to expose their keys.
Alternatives Considered
You can keep the option to add key and passphrase to Neo Backup for those who find it acceptable.