- Edited
I am writing down what I have learned and thought so far. I would appreciate it if you could add any content or opinions, as I feel it is lacking.
When there is an owner (Profile A) and a new user (Profile B), even if the AFU, BFU, or password of Profile B is compromised, each profile is encrypted separately, so it does not affect the internet usage history or stored files of Profile A. Therefore, if a new user profile is created, it is expected that app isolation will work well to some extent, although the exact level is uncertain.
Using different VPN IPs for each profile can help prevent profiling by ISPs or big companies like Google. While it may not be as effective as using two Pixel phones, it is expected to provide a similar effect.
One vulnerability is that if a USIM is used, the carrier may have the ability to monitor or collect traffic.
To defend against this, it would be advisable to use two phones, ensuring that the phone requiring important security does not use a USIM. However, there are other methods as well:
Daily use (for identity verification)
Security use (composed only of FOSS apps, anonymous, and for security)
By separating profiles and using different VPNs for each profile, as well as separating the application accounts and passwords used, it is believed that security can be enhanced.ell as separating the application accounts and passwords used, it is believed that security can be enhanced.