AirGaps newest product: AirGap Knox

The AirGap team is constantly developing the AirGap open source solution to enable self custody to the masses. With our newest product we add a new layer of security and usability to the battle tested AirGap solution. Knox is a game changer that leverages the security capability of your device to its fullest.

The final piece of the puzzle for AirGap Vault

We are proud to announce that we have created a new AirGap product: AirGap Knox. It acts as an additional layer of security for the well established AirGap Vault solution.
When converting a smartphone into a cold wallet, it is crucial to ensure the device’s environment is secure by manually disabling all network connections. Despite AirGap Vault’s non-use of any network connections, the device can still potentially connect to a network. This may raise some concerns about the security of the phone’s environment since it still connects to a network.

Unlocking the full potential

AirGap Knox takes security to the next level by automatically disabling all forms of network on an OS level, thereby achieving true offline security.

Once installed, the AirGap Knox takes control of the system and initiates the blocking of all connections on a deep system level — whether its wifi, cellular, NFC or Bluetooth. From then on, those can no longer be reactivated — Turning your device into a true hardware wallet.

The AirGap Knox acts as a device manager and guards the usability by restricting only the launch of the AirGap Vault. After the automatic installation, your seed phrase can then be generated in total privacy and top offline security because the AirGap Knox managed to cut off any network connectivity from the very beginning.

How does AirGap Knox leverage the Android Enterprise setup?

Android Enterprise is a device class that comes with a functionality to enable setting rules and limitations on devices. These limitations are often used in an enterprise environment to make sure the devices are only used for specific tasks. Hence the name Android Enterprise. At AirGap we leverage this feature in two ways:

1. Easy enrollment
   Android Enterprise devices offer a quick and easy way to enrol your devices right when they are unboxed or after a factory reset, in the form of six-taps on the setup screen and afterwards via scanning of a QR Code.
2. Push a defined rule set
   The before mentioned method of enrollment, downloads the AirGap Knox program and defines it as the Device Manager (EMM managed) which allows it to setup a secure environment for the AirGap solutions, by executing the following rules:
3. Download of the newest version of the AirGap Vault
4. Disabling all sorts of connectivity on a system level (wifi, cellular, NFC, Bluetooth)
5. Enrolment of the lockdown mode / or Kiosk Mode. Which further restricts the usability of the phone so only the AirGap Knox application as the managing app allows interaction. Only through the AirGp Knox application the user can then access the AirGap Vault application.

After the installation the user will only see the interface of the AirGap Knox which has three major functionalities:

• Launch of the AirGap Vault (The Vault is the only application which can be opened)
• Update the AirGap Vault via SD Card (Updates can be installed by using the APK and a transfer device such as a USB-stick or an SD Card. Find the instructions here)
• Factory reset the device. In case you would like to use the device for other purposes you can choose to reset your device. However all the saved data on the device will then be deleted — forever.

Whilst AirGap Knox is installed you can not install any other applications nor can you change settings. The device is securely locked.

The seamless installation process

To install the AirGap Knox, head over to the AirGap shop, and purchase Knox to receive a QR Code. After the initial purchase we will create your personal QR-code within the next few hours and send it to you via mail.

In the meantime, factory reset your Android Enterprise Recommended device, and scan the code in the first stage of setting up your device.

AirGap Knox then takes over, and handles everything from there.

Before you get started

The AirGap Knox solution currently only works on Android Enterprise recommended devices. There are over 550 devices which have received this label and the number is growing. Those devices offer an additional security setup that lets AirGap Knox manage the device and turn off the connections on a system level. Check if your spare phone is a recommended device by having a look at this list. Also make sure it has at least Android 10 running on it.

Android Enterprise devices come in different shapes and price classes. A new device goes for 80$-180$ (Nokia 5, Motorola Moto G8 Power, Samsung Galaxy A32, Google Pixel 2) furthermore, there are devices which are ruggedised (eg. Nokia XR20) or have a removable battery (eg. Samsung Galaxy XCover 5, LG Stylo 2). Depending on your preferred setup you can find the device of your desire.

Conclusion

AirGap Knox is a revolutionary addition to the AirGap open-source solution that takes security to the next level. By leveraging the security capabilities of Android Enterprise-recommended devices, it provides true offline security by automatically disabling all forms of network on an OS level. Knox makes the AirGap Vault the most accessible solution out there that creates the safest environment for converting a smartphone into a cold wallet. With the seamless installation process and easy enrollment, anyone can now easily use AirGap Knox to turn their device into a hardware wallet. If you’re looking for a secure and accessible way to protect your cryptocurrency, AirGap Knox is definitely worth considering.

Vist the AirGap shop

🛒 AirGap Shop

Download AirGap

AirGap Wallet
📱 iOS — App Store
📱 Android — Google Play (GitHub APK)
💻 macOS
💻 Windows
💻 Linux

AirGap Vault
📱 iOS — App Store
📱 Android — Google Play (GitHub APK)

Interested in AirGap? Stay in touch.

Discord |Telegram | GitHub | Website | Twitter | Reddit