What are your top 3 favorite features about Graphene?

ivicaivica

gk7ncklxlts99w1 I don't agree. Two banking apps that I have and one work phone have it mandatory to use scrambled PIN input. With a good reason. The only way someone can figure out your PIN is if the record you...but the same applies for your super fast PIN input which can be easily guessed just observing where you place your fingers.

gk7ncklxlts99w1

ivicaivica

A video definitely renders either method useless, assuming a decent frame rate and quality. A PIN typed fast enough might be harder to track even on video, but I wouldn't bet on it. A jumbled interface might make it so a video would need to get a good view of the numbers. But that's neither here nor there.

I still think I'd rely on my method more, in the absence of better logic. I don't see how your anecdote runs counter to my argument, just because a bank or employer requires jumbled PINs doesn't mean that's the best method.

mmmm

gk7ncklxlts99w1 you can type over 12 digits in less than half a second?

gk7ncklxlts99w1

mmmm

It feels like it. It's probably more like 1 or 1.5 seconds (I just tested it). I'm not the fastest touchscreen typist but I've had practice with that particular PIN. It would be useful to have statistics on entering PINs...but I don't expect it.

Murcielago I include that in my threat model and I decided against using PIN scrambling for that very reason, cause I type it slowly enough that someone could pick it up. It's so much slower that it takes me about 30 seconds.

Xtreix

I tend to agree that PIN scrambling is overkill for the majority of standard threat models, it's a good feature and it's good that it's available, but the majority of users probably don't need to add this complexity every time they want to use their PIN.

Also, if you trust SE, a random 6-digit PIN code is correct, Google Pixel generations 6 to 8 use the Titan M 2 which is a really robust security chip.

Murcielago

gk7ncklxlts99w1

I personally find the PIN scrambling feature helpful for users whose threat model includes being spied on through shoulder surfing or surveillance cameras.

If you are often forced to enter your password in public places or near people (metro, etc.) - e.g. due to the fingerprint bug - a long PIN + scrambling could in some cases be a better option than a password.

Murcielago

[deleted]

The name itself, GrapheneOS.

I hadn't even thought about it, but you're right: GrapheneOS really is a cool name!

[deleted]

One thing I'm thinking about for the safety of battered women, for example, is not displaying emergency numbers in the call history.

[deleted]

[deleted] The lame GOS competitor we're not supposed to mention here has set this up, and I think it's a good thing.

[deleted]

operation-casserole

What are your top 3 favorite features about Graphene?

The ability to disable the Cross-origin referrer for Vanadium.
Storage/Contact Scope.
Disallow/Allow Users running in the background.

ivicaivica

gk7ncklxlts99w1 Neither method is better... It depends on your threat model. What are the chances that a high resolution camera will be filming you from a perfect angle to see what numbers/letters you type to your phone... scrambled or not. Btw, enable the password input to be invisible for added security.

gk7ncklxlts99w1

ivicaivica Yeah I had that option enabled. It was a bitch to type out, and I was using a fairly short (15-16 character?) password.

missing-root

installation (LineageOS was such a mess)
camera
permission system

I see many of the preinstalled apps as bloat, even though understandable, because they are outdated and lack most features.

Deku SMS
Fossify Gallery, Files, Calendar
Mint calculator
next clock
Florisboard / Openboard

But for sure they are essential to have a minimal working system

ve3jlg

gk7ncklxlts99w1 I can type my PIN in less than half a second, way too fast for someone to see it.

Have you noticed all the damn cameras all over the place, which are likely recording and may be able to capture your PIN for slow playback?

gk7ncklxlts99w1

ve3jlg

Fair point. Hence my reasoning for using fingerprint now. Though I normally put my screen on low brightness when I need to enter sensitive info.

KS1

I love my GrapheneOS Pixel. I like Android and there the basic apps I like to use for email, music, podcasts, texting, and browsing internet. But I have nothing good to say about google and their business. They lie to everyone. And they are greedy. And they spy on people. And through YouTube ownership its obvious what they believe and what they censor. Google = 1984 and total evil, all while they smile to your face. Linux & GrapheneOS have made tech enjoyable again for me. Thank you team!!✌

Scott

the killer criterion why I chose GOS?

It doesn't need a Google account. I don't think this has been mentioned in this discussion, but it's extremely important to me.

skypriv

Per-app internet control switch (this should be a standard on all OS)
Robustness and advanced permission control features
No bloatware

« Previous Page Next Page »