Difference between stock OS device protection and GOS

someone27281

Basically now that Google has implemented their own "lockdown" mode with device protection (that enables some hardening) what is the exact security differences that GrapheneOS has with that setup?

I do know obviously GrapheneOS have more privacy due to being deGoogled/sandboxed Play,, but purely security, what's changed? For example a new pixel with device protection against an old supported pixel with GrapheneOS?

userofgos

someone27281 Basically now that Google has implemented their own "lockdown" mode with device protection (that enables some hardening) what is the exact security differences that GrapheneOS has with that setup?

Here's one of many differences: https://xcancel.com/GrapheneOS/status/1997454633699082342#m

Stock Pixel OS doesn't currently have strong protections against physical data extraction by default. Enabling Android 16 Advanced Protection helps, but it's not as strongly protected as an iPhone 17 with lockdown mode, etc. enabled. GrapheneOS has even stronger protection.

Read through the various comments on this: https://xcancel.com/GrapheneOS/search?f=tweets&q=Advanced+protection&since=&until=&min_faves=

Also read up on the GrapheneOS website documentation:
https://grapheneos.org/features
https://grapheneos.org/faq#security-and-privacy