Hello,
I have a question regarding the use of user profiles in GrapheneOS, and I would like to better understand how those of you who use multiple profiles manage them.
On GrapheneOS, all applications are already strongly sandboxed.
Applications therefore cannot communicate with each other.
In this context, I am wondering what the concrete security and privacy benefits are of using multiple user profiles, beyond the obvious use case of separating personal and work usage.
In a similar way, I am trying to understand how user profiles genuinely differ from features such as Private Space, in terms of real security boundaries as opposed to simple ergonomic or visual separation.
I am also curious to know how user profiles are used in practice by users:
- How many profiles do you usually use?
- What types of applications do you isolate into separate profiles (Google services, banking apps, social networks, etc.)?
In my own case, I currently use two profiles:
- Primary (owner) profile: no applications installed, used only for system management and to unlock / switch to my secondary profile.
- Secondary profile: contains all my applications and is my daily-use profile.
This setup feels clean and secure to me, but I am wondering whether I am missing additional benefits that would justify a finer separation using additional profiles.
Thank you in advance.