Is GrapheneOS right for me?

tree_bark

hey everyone,

i'm looking into getting a refurbished pixel 8a and installing graphene (or trying to find a vendor, that sells them with graphene pre-installed) and would love to be convinced to give it a try! I just have a couple of questions and i'd love answers to any or all of them.

Do the enhanced security features seriously impact ease of use?
I need a working phone, and don't require enhanced security features. i like them and prefere using open source software whenever possible, but my threat level isn't high. at the same time i don't need it to be super smart and capable, just roughly the same things ive been using smartphones for 12 years for.

Ai and erosion of data privacy
I am assuming ai features wont be built in/snuck in unlike elsewhere. but i still wanna know: whats the vibe in relation to google's llm-based ai features? if they become more integral to android in the future, will that affect GrapheneOS? the main reason I am seriously looking into custom roms is that i don't want ai features forced on me.
Will my apps work?
Sadly, I need Instagram and whatsapp for work (don't ask). From my undestanding installing both of those should be easy. on top of that it would be nice if i could still use spotify and keep playing my balatro save file (i bought it in the play store), but it seems like that would only be possible through microg/aurora? for my own private use I need a map app, signal and a browser app. which brings me to my next question.

I know firefox is not recommend, but i would still like to use it. i'm down to try out Vanadium, but i really need an ad-blocker, i can not deal with ads on my phone. i read that graphene reccommends a vpn and dns blocking, but does that mean i need vpn subscription to have an ad-free browsing experience?

how complicated is the different profile setup?
i read in a thread that you have to be careful so u dont drain ur battery too much, by having to many different profiles all accessing play services.

concerns around small projects
i am not trying to replace dependance on big tech companies with dependance on a small project that could implode. so in case something happens with the project or even if I just want a change: how easy is it to switch to other custom roms or re-install pixel android?
I am asking because of my own bad past experience, albeit in a different context. the first non-handmedown smartphone i ever had was the first fairphone and i still love the repairability of that design. but because they couldn't get the security keys for their hardware and i couldn't afford a new phone, i was stuck forever on android without security updates.

what does everyone think? my second choice is probably getting a 3rd gen iPhone SE . i'd honestly much rather stick with an android rom and i appreciate the ideals behind GrapheneOS (and open source projects in general), but if it's not feasible for me to use Graphene, I'd save up for that.

also i would love reccommendations on where to get a refurbished pixel 8a or even if there is trusted shops that sell them with grapheneOS installed (i'm based in western europe). and is there any good written or video tutorials for first time users?

if you made it this far, thanks for reading and have a good one!
-bark

c86

tree_bark

The Features, Usage, and FAQ tabs on the main site will be worth reading. It's also a proper OS, not a ROM.

There is no integrated AI in GOS and I highly doubt one will ever be integrated in the OS given the project and developers overall project stance.

You can install whatever app you want as sandboxed google play gives functionality on par with it integrated into the OS like a stock android device provides.

Use whatever browser you want, lots of users like Vanadium, some use Brave for more ad blocking and bookmark saving, while others use FireFox / forks because they enjoy it. Security between chrome and gecko browsers is where the divide mostly lands but users can use whatever they want.

Setting up additional profiles is as simple as turning that feature on and setting up a device as new. Running an additional profile is essentially running a second device simultaneously, so this is why you'll see comments about possibly increased battery use - whatever is running across each profile needs power to run.

Additional security features can be toggled globally, then adjusted on a per app basis if functionality is effected. Some apps (banking) can have additional attestation issues and need to confirm install from play store proper, so sandboxed google play services mostly resolves this. But sometimes additional exploit protection settings need to be toggled.
https://privsec.dev/posts/android/banking-applications-compatibility-with-grapheneos/

The install process is very straight forward if following the official guide. Reverting to PixelOS is essentially the same process and outlined in the individual guide as well. When I first tried GOS, after I installed I reverted to stock just to do it and it just works.

If you like the Apple ecosystem then iPhone is a reasonable device with a similar security posture while being reasonably private in comparison to GOS. However you ultimately own your GOS device in every way as opposed to the obviously limitations of iOS/Apple.

You would have to look at resellers in your region for OEM unlocked devices and reputation. I wouldn't buy a device with GOS preinstalled. As for any videos, sideofburritos on YouTube has a good install walkthrough that follows the official guide and notes the importance of following the official guide. This is what I would watch just to familiarize yourself with the process prior to following the official guide.

Watermelon

tree_bark trying to find a vendor, that sells them with graphene pre-installed

I recommend against this. Buy a normal supported Pixel from a reputable shop and follow the official GrapheneOS installation guide.

tree_bark Do the enhanced security features seriously impact ease of use?

GrapheneOS is optimized out of the box for compatibility with Android, specifically because some of the security features can expose bugs in apps and cause them issues or crashes. You can opt-in to higher security in apps you want, or opt-in for all apps and then opt-out for apps that break. The main website covers this, I don't remember which pages exactly.

tree_bark whats the vibe in relation to google's llm-based ai features? if they become more integral to android in the future, will that affect GrapheneOS?

How so? GrapheneOS is based on the open source Android code. If AI features are open sourced, I don't see a reason why they shouldn't be available to whomever wants to enable them in GrapheneOS. And all the proprietary functionality that Google adds is anyway already NOT in GrapheneOS, this isn't specific to proprietary AI features.

tree_bark the main reason I am seriously looking into custom roms is that i don't want ai features forced on me.

GrapheneOS is a top-tier professional project:
https://grapheneos.org/hiring
Enough looking at the release notes and the announcements they post on the forum and their Mastodon/X accounts should give you the idea that the people running this project are experts from the industry rather than hobbyists. This is something they've said themselves occasionally, but it's also evident to me as an outsider. And despite the nonprofit nature.

They've said they're anti-authoritarian. GrapheneOS protects your freedom and privacy through and through, by having very good security, and being neutral in allowing you to use whatever you want on top of it, with an equal level of security among all of your apps, and not pushing anything on you. Despite what I said earlier about compatibility, the security is still greatly improved even in the out of the box state. GrapheneOS is not just your best bet for security out of all alternative OSs, but also your best bet out of all OSs generally. Cellebrite reportedly can hack all phones (including iPhones) except GrapheneOS. Some other alternative OSs were caught silently and knowingly transmitting data to OpenAI (GrapheneOS has written posts about this). I recommend avoiding all these “custom Read-Only Memories”.

tree_bark Will my apps work?

Any app that's not trying to ban GrapheneOS, or alternative OSs at all, should work correctly. The main way it happens is by apps using the misnamed Play Integrity API. But some banks and games do some stupid “security” checks that detect certain idiosyncrasies of GrapheneOS as signs of a research/emulated environment for “cheating”/“tampering”/etc. One feature that has idiosyncrasies is the secure app spawning feature, which GrapheneOS have said they want to improve in order to mimic Android. To be clear, the feature is coded correctly, but these apps incorrectly depend on implementation-specific details.

tree_bark keep playing my balatro save file (i bought it in the play store)

I think Balatro uses the aforementioned Play Integrity API to block GrapheneOS players. There's previous threads here about Balatro. You could ask the people there how it's going now.

tree_bark microg

I believe MicroG isn't usable on GrapheneOS. It aims to reimplement Google Play, but GrapheneOS doesn't allow apps to have privileged access, so if MicroG uses privileged access for anything, that wouldn't work.

The GrapheneOS team have said somewhat recently that they want to patch a minor vulnerability created by a combination of the lack of Google Play integration in GrapheneOS allowing you to install alternative reimplementations (or malicious fake versions), together with Google libraries embedded in third-party apps blindly assuming that the installed Google Play implementation is Google's. It'd be nice to see them patching this, but this might further harm the use of MicroG on GrapheneOS.

tree_bark aurora? for my

Aurora Store has some issues, including security issues, although it has some legitimate uses, and it should still be relatively fine to update existing apps without installing new apps, because installed apps have their signing key pinned — all updates have to be signed by the same key as the installed version.

I recommend against logging into your personal Google account on unofficial Google apps (such as MicroG and Aurora Store).

tree_bark i read that graphene reccommends a vpn and dns blocking, but does that mean i need

You don't need anything. GrapheneOS doesn't limit what DNS/VPN/ad-blocking options you can use on it compared to standard Android. There's ad blocking apps that should be perfectly usable, and they'd have the same security risks on GrapheneOS as they have on Android — specifically, I think they require some dangerous permissions. DNS and VPN don't require granting any permissions, so they're more secure. And DNS is quite easy to set, no need to install an app.

tree_bark i'm down to try out Vanadium, but i really need an ad-blocker

Vanadium has a built-in ad blocker (very simple, no configuration), it appears as an Ads website permission inside Vanadium. You can toggle it as a whole on/off for all sites, and toggle it per-site. Vanadium also has built-in support for DNS-over-HTTPS independent of the DNS settings in the OS.

tree_bark how complicated is the different profile setup?

I recommend avoiding multiple user profiles. They have weird non-obvious things about them.

tree_bark how easy is it to (…) re-install pixel android?

You will lose all data. GrapheneOS includes its own kinda-broken open source encrypted backups app, and stock Android has proprietary backup support through the Google account. They're incompatible. (Additionally, Google Play is sandboxed on GrapheneOS so it can't read or write other apps' private data to back them up or restore them (respectively).)

tree_bark the first non-handmedown smartphone i ever had was the first fairphone and i still love the repairability of that design. but because they couldn't get the security keys for their hardware and i couldn't afford a new phone, i was stuck forever on android without security updates.

Fairphone has awful security and provides false EOL dates. GrapheneOS publishes the EOL dates in their FAQ pages, and they've written about Fairphone's awful security in the past. (I'm not sure what security keys and hardware you're talking about.)

tree_bark my second choice is probably getting a 3rd gen iPhone SE . i'd honestly much rather stick with an android rom

The second most secure option after GrapheneOS is iPhone. Stock Android is more secure than all these awful “custom Read-Only Memories”. All of these are things the project has written about in the past, you can look it up if you're interested.

tree_bark is there any good written or video tutorials for first time users?

I think the video by Linus Tech Tips is a pretty good overview.

Xarcell

tree_bark I switched to GrapheneOS over a year ago. I am never going back. In fact, I swear I would rather not have a device, than have one without GrapheneOS. After using it for 3 months, I bought the pixel tablet and put GOS on it. That is now my primary device. Then 3 months after that I put GOS on all my family members phones. That was exactly a year ago.

Today, all my family members got tablets for Christmas, and I am installing GOS on them as I write this.

What is great about it besides the privacy and lack of bloat, is that you have different profiles you can use. I have one(admin) where all I have installed is Brave and ProtonVPN. I do everything through the web browser. It fits 99% of my needs as almost everything can be done through the web browser. For things that cannot be done through the web browser, I have a second profile that I can switch to in an instant. It has Google Play services sandboxed to reduce data collection. I use Google Play and my Google Account to install apps that I must have for work or my kids school. Although, I rarely need to use it.

The only complaint I have gotten from family members is that Cashapp will not work, and messengers will not work properly. Private messengers(not SMS) depend on Googles servers to send notifications. Threema is the only one I have tried that I found works on GrapheneOS without the Google sandbox. I have not tried Signal/Molly, Whatsapp(never will), and Telegram(never will), but I think I've tried everything else.

I wish I would have adopted it sooner. If I had a million dollars, I would donate it to the developers of GOS. For me, its GOS or nothing at all. I don't even use my Linux laptop anymore.

gta3

Yes it is right for you

At the end of The day nothing is ever perfect, all u can do is move closer and closer to your desired goal mitigating what u don't want.

G.O.S is far more private than all other options, by far.

But a zero day always exists In tech, so nothing is 100%

Stop splitting hairs and get on with it.

Lastly, use apps like Molly-foss instead of watsapp where u can, as watsapp etc are clearly a breach of your privacy

Lastly apple is not private by any means, they track and save all ur data, if you believe eveything apple says then your niave, if the CEO wrote pigs can fly, would you believe it?

gta3

Ironfox is a good fork or Firefox, with adblock and the likes by default

Then use newpipe instead of YouTube, helps to reduce google tracking and provides a better all round experience

Meaning you never touch the YouTube.com domain

tree_bark

hey everyone,

thank you so much for all your responses! I read the FAQ and skimmed the installation guide already and from that and your responses it seems like its not harder then installing linux on (supported) desktops and laptops, which I've been doing for years. and while i like the convenice of iphones i really dislike how they lock you out of so many features.

i also just wanna say i really appreciate how modular Graphene seems to be designed. a lot of options, but aside from technical limitations, no hard rules on what your not allowed or supposed to do. this to me seems like the biggest flaw with most other "privacy-focused" android implementations: they decide what's right for you and everyone with the same or even less customizability then android.

so thank's again everyone for the responses! I already started looking into where to get a (used) google pixel and will do the install myself (I just read in a Mastodon Post by the official GrapheneOS Account that there is trusted vendors, that sell the OS pre-installed and wanted to check that out, but couldn't find any).

sorry for not responding to everyone in more detail. i might check back in on this thread once everything is installed to update everyone with how it's going!

Foggy

IMX Vanadium's adblocker is pretty good - I've not needed to reach for a browser with better adblocking as I do on iOS. I do use Firefox + uBlock Origin for un-logged-in Facebook, so I can zap some of the 'and now login' popups.

For videos check 'Side of Burritos' on Youtube, he has some good beginner introductions, and he also goes through why he's trying to do the things he shows you how to do.

GOS is a toolbox of things you 'could' do, and part of it is understanding the tools to decide how to achieve what you want, which depends on what you're trying to protect. Even if you go all-in and install Google Play and login to your Google account, it's still better than stock Android.

As you say, a number of other 'security' Android OSes decide security means 'preinstalled cryptocurrency and VPN apps', which may not match your threat model at all.

What I did first is get a second phone for cheap (mine was a Pixel 4a with a cracked screen, when it was still just about supported) and experiment on that, rather than messing with my daily phone. Then I bought a 'good' Pixel when I had a clearer picture of what I wanted to do. You could keep your existing phone running while you experiment with the 8a for a few weeks before moving everything over from your current phone. Using GOS on a temporarily-second phone means you aren't afraid to wipe it and start over if you want to try doing things a different way.