Maybe smscon doesn't have to implement it all. Why not co-operate with TrueCrypt, if user wants to have better security.

When the phone boots, /home/user/ (or /home/user/MyDocs/) would be TrueCrypted.

SMSCON when starts, asks "lock code", which at the same time is TrueCrypt password so /home/user (or /home/user/MyDocs) can be mounted. User can also bypass using "Cancel" button, but then /home/user/MyDocs is not mounted and the device has limited access and workings.

Then again, maybe SMSCON doesn't need to know about TrueCrypt at all. When the device boots, user has to oneself to mount TrueCrypt device by clicking a shortcut in the desktop.

TrueCrypt would make the device's user data really secure also against copying when stolen. Security code itself won't protect data.

But at least if SMSCON would have its own locking mechanism, which when powercycled would still allow SMSCON to be started before the lock code, that would be great.