Ilandar@aussie.zone to Android@lemdro.idEnglish · 6 months agoComparison of privacy and/or security focused Android ROMs versus "Stock" Androideylenburg.github.ioexternal-linkmessage-square15fedilinkarrow-up144arrow-down11file-textcross-posted to: privacy
arrow-up143arrow-down1external-linkComparison of privacy and/or security focused Android ROMs versus "Stock" Androideylenburg.github.ioIlandar@aussie.zone to Android@lemdro.idEnglish · 6 months agomessage-square15fedilinkfile-textcross-posted to: privacy
I stumbled across this today and thought it was worth sharing. I have used every one of these ROMs except /e/ and they are all good projects in their own right.
minus-squareAndromxda 🇺🇦🇵🇸🇹🇼@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up6arrow-down2·6 months agoBecause the Pixel unfortunately is the only secure Android hardware platform
minus-squareMaggiWuerze@feddit.delinkfedilinkEnglisharrow-up1arrow-down3·6 months agoThere’s nothing inherently safer in Pixels, they are just the only ones that get security updates fast enough for Graphenes taste
minus-squareAndromxda 🇺🇦🇵🇸🇹🇼@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up9arrow-down1·6 months agoOh yes there is. ARMv9 MTE, Titan M2 secure element supporting Android Verified Boot, StrongBox (https://source.android.com/docs/security/features/keystore), Weaver, Hardware key attestation and Insider attack resistance, as well as a programmable USB controller that allows the user to fully disable USB-C (while the device is locked) on a hardware level. Pixels also have hardware support for full Wi-Fi MAC address randomization, and all radios are completely separated from the main system through IOMMU. I recommend this video, it’s a pretty good breakdown of some of the hardware security features + the GrapheneOS privacy/security improvements.
minus-squareMaggiWuerze@feddit.delinkfedilinkEnglisharrow-up3·6 months agoWow, I had no idea. That makes a lot more sense then, thanks for the sources.
Because the Pixel unfortunately is the only secure Android hardware platform
There’s nothing inherently safer in Pixels, they are just the only ones that get security updates fast enough for Graphenes taste
Oh yes there is. ARMv9 MTE, Titan M2 secure element supporting Android Verified Boot, StrongBox (https://source.android.com/docs/security/features/keystore), Weaver, Hardware key attestation and Insider attack resistance, as well as a programmable USB controller that allows the user to fully disable USB-C (while the device is locked) on a hardware level. Pixels also have hardware support for full Wi-Fi MAC address randomization, and all radios are completely separated from the main system through IOMMU. I recommend this video, it’s a pretty good breakdown of some of the hardware security features + the GrapheneOS privacy/security improvements.
Wow, I had no idea. That makes a lot more sense then, thanks for the sources.