The only factors are how long it's out of your possession and how many obstacles are in the way of compromising it.
Exactly. So in order to secure your phone, you want to throw as many obstacles in the path of the thief as possible.
PIN lock? Good.
PIN lock w/ 3 attempts and automatic wipe after? Better.
Automatic wipe if the phone has not been unlocked in a certain period of time? Even better.
Allowing unlock after a certain amount of time only if the phone can contact a certain server (so it can receive and a remote wipe command if one was issued)? Better still.
Data-at-rest is encrypted? It better be.
To get past security measures like these, you need a fair amount of skill and sophisticated tools. Casual thieves, law enforcement and probably many intelligence agencies will have a pretty hard time getting at this data. The NSA, who knows. But if there's a root exploit that only relies on the ability to hook up your phone to a PC, all of the above is pointless, and any punk off the street will be able to get at your stuff.
What I mean is that the plane isn't even in service yet.
That's the problem. My country decided to buy these things and participate in the development as a level 2 partner. That has some advantages, and at the time was cheaper than buying off the shelf, plus we got a good deal of offset orders for our own aerospace industry. However, the projected cost per plane has already increased by 45%, and it's still not clear how much the final sticker price will be, or how the plane will perform.
The one big advantage of buying off the shelf is: you know what you're getting and at what price. However I also know how the Dutch military likes to buy stuff: off the shelf is never good enough, and every design needs "to be peed on", as the expression goes, meaning everyone must be allowed to give input as if marking their territory.
"A car is just a big purse on wheels." -- Johanna Reynolds