Low competent adversaries

lawman

Hoping a developer will see this.

Most adversaries are low competent, so could you please allow useful features which only work against low competent adversaries.

Eg. Hidden user profiles (only visible if entering the correct pin)

I understand GOS developers don't add this killer feature because NSA level adversaries could see hidden profiles.

That reason for refusing to consider is unhelpful as most adversaries are low competent and world be catered for.

Thanks

de0u

lawman Most adversaries are low competent, so could you please allow useful features which only work against low competent adversaries.

Eg. Hidden user profiles (only visible if entering the correct pin)

I understand GOS developers don't add this killer feature because NSA level adversaries could see hidden profiles.

That reason for refusing to consider is unhelpful as most adversaries are low competent and world be catered for.

I don't speak for the GrapheneOS developers, but I believe they already feel they have enough high-priority items in the queue to discourage in-depth consideration of low-strength/low-deniability countermeasures. As just one example, my sense is that there are ongoing issues related to structural issues in AOSP's VPN infrastructure. I can imagine that avoiding VPN leaks might seem more important than hidden user profiles.

Something else to keep in mind is that every feature added by GrapheneOS must be maintained while the underlying AOSP changes monthly. That means that features that are "done" must be re-implemented from time to time. Google has been making changes to the user-profile infrastructure (e.g., Private Space, which may not be completely done yet), and my understanding is that there have been hints of making other changes (e.g., booting into secondary user profiles without needing to unlock the owner profile). Given that, I can understand why the GrapheneOS developers may be reluctant to add major user-profile features.

It is clear that some people want hidden user profiles, but it is also clear that this would be difficult to do solidly, and meanwhile even doing it less-than-solidly would probably require expensive reimplementation work.

One way to resolve this difference of opinion would be for somebody to design and build the feature in a GrapheneOS fork, and submit the implementation for consideration after it's completely built. The GrapheneOS project might not decide to incorporate it even then, in which case perhaps the fork would become permanent. I suspect that approach would be more productive than requesting something that the GrapheneOS developers have already heard requests for, and have said that they don't plan to implement.

By the way, I don't think it's accurate to say "refusing to consider" when the matter has been raised before and responded to before. Considering does not always result in agreement or compliance.

DeletedUser393

Mod note: @DeletedUser393 See https://discuss.grapheneos.org/d/11951-ai-generated-text-is-forbidden-with-the-exception-of-automated-translation

DeletedUser433

DeletedUser393 Why did you ping yourself and like your own comment? Is this a bot?

de0u

DeletedUser433 The current text of that post was written by a forum moderator, replacing the previous text written by the identified forum user.

DeletedUser393

DeletedUser433 no bot. My cousin write: “Hey guys my sorry, my younger cousin joined this blog. He doesn’t speak English. He is new to the country, but he told me he loves this software. I am helping him when I have time, I tried to show him ChatGPT but he said he got in some trouble or something. I am working in the morning. Good night. Apologies for anything.”