Setup for frequent traveler

Travspring

Information: This text was translated into English by libretranslate from my native language.

Hello, I have been reading here for some time and have already found some very interesting discussions. I have a few new acquisitions of smartphone, laptop and/or tablet and I would like to take the opportunity to deal with security and privacy. My profile, requirements, ideas:

1 Profile:

large part of the year due to travelling not at my place of residence
occasionally longer stays abroad
staying mostly in hotels
experiences with Mac OS, iOS, Android, Linux, Windows

2 Which devices should be purchased:

Device 1: Smartphone (pixel with GOS)
Device 2: Laptop or Tablet (recommendations very welcome)
Device 3: laptop that remains in my house and where I can back up the other devices

3 Already bought:

Device 3: kindle
Device 4: AirPod Max

powerbank
data blocker
mobile phone contract with sufficient data for roaming so that I am not dependent on WLANs or local SIM cards

4 The following must be possible while travelling:

Signal/WhatsApp
Navigation
Surfing
Online banking
Music
Read
Access to passwords
Use of 2FA
Backup (device 1 <-> device 2)

5 ideas:

5-1 device 1: Pixel 9 with the following additional profiles:

Travel: Navigation, Booking.com, Apps for Airlines, Transport etc.
Bank: Online banking (TAN)
Communication: Email App, Signal, WhatsApp
Security: KeePass, 2FA App (2FA for account passwords which are stored in device 2)
Leisure: surfing, music, podcast

5-2 device 2: Here I am still looking for a suitable device and fluctuate between:

a second pixel
a pixel tablet
due to size: iPad Mini

Short: the device should ensure that in the case of a defect, loss etc. of pixel 9 all requirements (see 4.) can be met.

5.3 device 3

Stays at home and serves as a base to backup/restore the other devices.

What do you thing about the setup? Constructive criticism is very welcome. It would be very nice if you could send me recommendations for device 2 and 3 because I am soo lost there at the moment.

Merci!

angela

Travspring

Is this for convenience or do you have a threat model?

Travspring

angela thank you for your reply! This question has been on my mind for the last few days, but unfortunately I haven't had a chance to read up on the topic in depth yet. But I will use the next few days to continue to look into it.

Until then, I would say that it is for convenience. Maybe I need to approach the whole thing in smaller steps. I'm just too impatient sometimes.

Aeon

Travspring

a good generic recommendation when switching to GrapheneOS from stock android is keep your setup the same. Install Playstore and keep using your phone like before just that instead of Stock you are using GrapheneOS as Operating system.

This will already greatly improve the security of your device as well as your privacy. Then you can change your setup little by little to be more secure/private. This will make sure you are not overwhelmed or frustrated because everything changed at once.

You should research and think about your personal thread model and how you want to use your phone and then slowly make changes to apply your thread model. Keep in mind a thread model is not something static it will change over time.

When I switched to GrapheneOS I installed Playstore and have installed the majority of apps with Playstore and I am only using one User-Profile. After a while I added Obtanium to install some apps that where not on the playstore.

As for multiple User Profiles: I only have created another one temporarily to show acquaintances what a fresh GrapheneOS install looks like. After showing them that I delete the profile again.

angela

Travspring

Travspring i think it's good to approach it all at once

if you don't have a threat model, such as engaging in activities that could lead to being targeted by hackers or governments, but just want something secure and private, then your risks are lower and so tradeoffs for convenience are acceptable.

There are anti-evil maid attacks and strategies to verify firmware in case a device is altered outside of your presence. Graphene is good for that because you see a hash at the beginning. iOS is good if you don't mind Apple seeing lots of data about you and you aren't concerned about the government ordering Apple to turn over your data.

nunyo

If you're considering an iPad mini as your second device because of size, I recommend the Pixel 9 pro fold. I love mine and the inner screen is 8" like the mini. Doesn't meet the requirement of having a backup device in case you lose your phone, but it's a tremendous convenience carrying a single device.

job_shredder69

My setup when I travel for a short period of time between 1 - 2 weeks. Although I've also traveled for over 3 months and only brought my Samsung S10. When I travel, I want to have a worry-free experience rather than thinking about my setup, so preparation is key. The main thing about traveling is when you lose your phone/cash/documents, and if you don't have a backup, it'll make travel inconvenient. So make sure you have proper backups.

So here's my setup:
2 Debit cards
2 Credit cards
One on your person, and one lives in the bag. If you have a smartwatch, it's a great idea to put in your backup cards.
Do not look like a target, and walk with a purpose. If its good to be true, then it's a scam.
Learn the basic local language
I used to buy a local sim after landing, but I figured the airport/hotel has WiFi and I can find my way using offline Google Maps. Make sure to download and test it before hand. You can also use Organic Maps to map your routes, but OM is not as reliable as GM.

App setup:
Bitwarden: This is one of the most important app for me when I travel. My travel docs are stored here.
WhatsApp/Signal: for when I lose my phone, and need to get my 2FA from a relative.
Stock camera
Ente.io/Immich for photo backups
RSAF for cloud/file backup of important docs
Plane, accommodations (Agoda), etc can be booked on your browser. I used Addy.io for email signups, a random phone number (They will never call). You can grab your physical plane ticket at the counter if you'd like.
Deepl/Translate You for translation
JMP.chat for a VoIP number in case your bank calls you to authorize a purchase.

This should cover you during your travel. Most of the time you'll be out and about, so you won't need the laptop or tablet, and you'll be exhausted from exploring.