Question on the potential of a "GrapheneOS phone"

TheTacomancer

https://grapheneos.social/@GrapheneOS/114662162021684973
In the above thread on the official Mastodon it floats the idea of a "GrapheneOS phone" and how difficult it would be as it would require hardware that supports all of its required features.

I was wondering if there had been any attempts to potentially partner with any companies to make such a thing. The first one that comes to mind for me personally is Framework. They've stated that they don't want to enter any verticals unless they have a real way in and being the people who make the "GrapheneOS phone" may interest them.

If you did partner with some people and had the OS pre-installed you'd probably need a screen on the welcome screen to install Google Play and other of Google's services automatically so they don't wonder how to install apps or why their phone lacks a calendar

grayway2

TheTacomancer As I said earlier, a GrapheneOS phone is not realistic at all.

Small companies are not going to take the risk to spend millions of dollars on building a phone with the GrapheneOS hardware specific requirements. I don't myself expect the sales to be enough important to cover all that spending.

Big companies like Samsung or OnePlus doesn't care at all on having that kind of requirements on their own devices so GrapheneOS is the last thing they're even thinking about.

matchboxbananasynergy

grayway2 The OEM wouldn't be taking that cost upon themselves. They'd require payment up front.

person92

grayway2 Big companies like Samsung or OnePlus doesn't care at all on having that kind of requirements on their own devices so GrapheneOS is the last thing they're even thinking about.

Samsung reached to GrapheneOS in the past to improve their devices.

area51

A GrapheneOS phone, Its never going to happen, maximum consumer share of 200,000 users maybe 230,000 users. Device designed and built from scratch, to the exacting standards of GrapheneOS, then custom software from scratch, device ready in stable release, hmm two years, money up front for building, let's start a go fund me page now, total required.. Multi million dollars, OK so device ready in say a decade, everyone OK to wait... Thought not.
If G@@gle close the door on GrapheneOS, I am realistic to think that its a dumb phone for me, and learn to text using T9 predictive.

wuseman

area51
If anything I'm hoping Nothing Phone or someone will step up and make GrapheneOS support feasible on their devices. Maybe Motorola, as they now offer bootloader locking with signed keys, etc.

Viewpoint0232

area51 A GrapheneOS phone, Its never going to happen, maximum consumer share of 200,000 users maybe 230,000 users

Not sure, you could also argue that a GrapheneOS phone with a not-so-crazy price would gain additional users. It makes it easier to get your hands on a device with GrapheneOS. Because currently people need to feel confident that they can install GrapheneOS themselves which is a big ask for most (even if it's actually easy) and GrapheneOS already requires users to buy a specific phone (Pixel). I would have never bought a Pixel if I wasn't keen on trying out GrapheneOS, and I am quite disappointed with the hardware (particularly battery life) so that I would not get a Pixel if I couldn't install GrapheneOS on it. Honestly, if LineageOS had supported my previous phone (a Samsung) I probably would have just installed that rather than getting a new phone because my original goal was just to degoogle and use free software where possible and have a phone that doesn't "phone home".

Xtreix Their device does not meet the project's security standards.

First of all, the standard might be met if it's not too expensive and the OEM is willing to change the hardware to meet these standards.

Second, GrapheneOS might have to compromise on the hardware security for the first generation "GOS Phone" just in order to see if it would be commercially viable. I'd rather have a GrapheneOS phone with imperfect hardware security rather than development stopping altogether.

area51

wuseman
I suppose everyone has their favourite phone, but even if Motorola or Nothing phone indicated they would build a phone, its reasonable to think 12 or 18 months from drawing board to testing variant coming off the production line.
It is all very well having world class security/privacy software that's GrapheneOS, you need something to install it into, at the moment Pixels are it, but for how long is G@@gle willing to let it happen. Maybe its just G@@gle shaking up the market, pick on us, fine us restrict us and we will do this to ASOP. Sabre rattling, as it were...

igork

potentially, nothing+ GOS could be a good collaboration. Of all the famous brands, they are not afraid to experiment.
It is possible to consider options that are not obvious, such as offering cooperation to Pavel Durov (a person who publicly supports privacy and security and has the resources to implement such projects).
At the moment, it is clear that investments in GOS are necessary, and we should also expect certain restrictions before solving this problem.

Xtreix

igork potentially, nothing+ GOS could be a good collaboration

Their device does not meet the project's security standards.

igork cooperation to Pavel Durov (a person who publicly supports privacy and security

No, it's wrong.

There are ongoing discussions with an Android OEM and the head of a hardware company on Discord.

Onlyfun

igork

igork Pavel Durov (a person who publicly supports privacy and security and has the resources

nobody shall follow this bullshit..Telegram is controlled by the most anti privacy secret service, would not be possible be Durov such pro-privacy actor

Graphene os collab with Durov = end of graphene os as a privacy respecting os

spl4tt

Xtreix Their device does not meet the project's security standards.

But a collab with GOS would make it so. I believe GOS team said they would be ready to improve others devices as well?
So it's not exactly impossible.
Also, an OEM doesn't have to get a GOS compliant device, but just give access to the files that google hides now from the public. OEMs still have access to that afaik

Xtreix

spl4tt But a collab with GOS would make it so

I don't know but I doubt it.

Viewpoint0232 I'd rather have a GrapheneOS phone with imperfect hardware security rather than development stopping altogether.

There will be minimum requirements such as verified start-up and MTE, but I think there are many of us who would prefer this to start with than to stop the project, that's for sure.

dhhdjbd I really dont get how it is possible that there are soo many phone manufactures making android phones,
yet they are all incapable of making a device with comparable security to a pixel.

Because it's very difficult to do as well when Google has invested a lot of money and resources in Pixel security because they (were) the benchmark in Android development, and Google takes security seriously, they may do some data collection, which could pose some confidentiality issues, but they certainly don't want the data they process to fall into the hands of competitors.

dhhdjbd I feel like they are all not interested in this, because they can just claim it is 'secure' and most people wont / cant look into it, and believe it.

Many users still think of security in terms of Antivirus and don't know that there's security in hardware, so yes, that's basically what's going on.

dhhdjbd

I really dont get how it is possible that there are soo many phone manufactures making android phones,
yet they are all incapable of making a device with comparable security to a pixel.

I feel like they are all not interested in this, because they can just claim it is 'secure' and most people wont / cant look into it, and believe it.

I really hope the public sectors intrest, considering their need for security, hopefully can change it.

raccoondad

Xtreix they may do some data collection, which could pose some confidentiality issues, but they certainly don't want the data they process to fall into the hands of competitors.

The data collection is also minimal (in comparison to an attacker gaining access to the device) and (questionably) consented to.

A device that can't secure user data isn't a device that will sell well.

Keep in mind, even if a device reaches all of GOSes security requirements, an unlockable bootloader is required!

Xtreix

raccoondad La collecte de données est également minime (par rapport à un attaquant accédant à l'appareil) et (de manière discutable) consentie.

I don't know who here has claimed that the data collection that Google does is more serious than an attacker accessing the device.

raccoondad A device that can't secure user data isn't a device that will sell well.

If you're talking about a future device with GOS, yes we want a secure device that protects user data, I'm not quite sure what you mean with your comment, also, a reminder that a bunch of unsecured Android devices are selling extremely well.

raccoondad Keep in mind, even if a device reaches all of GOSes security requirements, an unlockable bootloader is required!

I don't know why you want to remind me that the bootloader must be unlockable, I'd like to add that it must also be able to be re locked again.

raccoondad

Xtreix I don't know why you want to remind me that the bootloader must be unlockable, I'd like to add that it must also be able to be re locked again

This was actually me trying to respond to dhhdjbds comment on modern phone manufacturers 😅 apologies my brain isn't fully on today.

Good point however on it also needing to be relockable

Hat

In order to release a device, the organisation would need to drastically increase its incomes.

I can see some options :

A big donator
A contract with a government or a company wanting a secure phone for their employees and ready to pay most expenses
A service provided by the team (like a VPN, email, cloud drive or anything similar) that is promoted by an experienced marketing company (To reach even people who are not familiar with GrapheneOS)

igork

Onlyfun
What kind of anti-secret service is this?
In my country, Durov does not give out personal data of users at the request of the special services.

chinook

igork FSB (click for the article).

He's also notably anti-security and privacy by (1) implementing a comparably weak protocol from scratch and (2) claiming users' conversations on telegram are e2ee while they are NOT (until users start a secret chat specifically).

Also his stance on non/cooperating with authorities significantly changed since his high-profile arrest in France.

But it's all very much off topic -- I'd like to turn your question on its head: what is so special about Durov that makes you claim he's a privacy supporter? I do not mean his interviews, I mean his actions (ie: compare security and privacy claims & performance of Telegram with SimpleX, Threema, Signal; no it's not a recommendation, it's a reference point)

spl4tt

chinook implementing a comparably weak protocol from scratch

You can't say it's weak without showing us some evidence that proves this. mtproto has not been cracked until now afaik.
I really don't understand how people are just hating on the encryption protocol when there is literally no evidence of it being bad. Just because "it's new" doesn't mean it's bad. Can you show any audit, stating that it's actually worse than others?

Telegrams "problem" is, that it's a cloud service, not exactly a messaging service only. That means your messages are on their servers. Even if encrypted, telegram could have access to them. That is the only real "bad" thing. But that's also what allows telegram to be such a god damn good app compared to all others.

In my understanding, pavel is indeed a privacy friend, not an enemy. He literally has no reason to sell data at all. But I do agree that you should never have to trust a company, and you should always be on the safe side ofc.