@shadow8t4
I'd agree a Pixel 3a is a great choice.
Theres a new wave of alternative operating systems that provide close to production quality experience & security
#GrapheneOS #CalyxOS #RattlesnakeOS #HashbangOS
Also CalyxOS just put up downloads for their Mi A2 builds - not as good a phone, only one year of full security updates left, but they do a 6gb/128gb model
@kyzh
@cwebber
Meanwhile there's recently been a whole load of nice work on seedvault- a backup app for #AOSP
Automatic encrypted backups to USB storage and soon #Nextcloud.
https://github.com/stevesoltys/seedvault
Already built into calyxos.org and #HashbangOS coming soon to GrapheneOS.org and, I think, eventually to #LineageOS
@emacsomancer
Yeah disabling Google apps &/or switching off their permissions will help against this
Best get a phone with a close #AOSP fork. Like #LineageOS, or better one of the new wave of open source privacy & security focused #AOSP forks. #CalyxOS #GrapheneOS #RattlesnakeOS #HashbangOS
Get all the solid security & privacy features from AOSP (big improvements in recent years) https://arxiv.org/abs/1904.05572
AOSP doesnt spy on you & is much more secure than desktop linux ported to a phone @Blort
Android is the most widely deployed end-user focused operating system. With its growing set of use cases encompassing communication, navigation, media consumption, entertainment, finance, health, and access to sensors, actuators, cameras, or microphones, its underlying security model needs to address a host of practical threats in a wide variety of scenarios while being useful to non-security experts. To support this flexibility, Android's security model must strike a difficult balance between security, privacy, and usability for end users; provide assurances for app developers; and maintain system performance under tight hardware constraints. This paper aims to both document the assumed threat model and discuss its implications, with a focus on the ecosystem context in which Android exists. We analyze how different security measures in past and current Android implementations work together to mitigate these threats, and, where there are special cases in applying the security model in practice; we discuss these deliberate deviations and examine their impact.
>I generally run non rooted, vanilla firmware these days (one plus / Sony normally)
Isnt Oneplus a bit shady though? eg. this mentions a couple of things https://www.vice.com/en_us/article/59y4vz/oneplus-backdoor-engineer-mod
also aren't they a bit slack with security updates?
Have you checked out #GrapheneOS, #CalyxOS & #HashbangOS - production grade AOSP forks (full verified boot, monthly security updates for 3+ years from device launch) available for Pixel phones + Calyx has early support for the Mi A2
Graphene is 1/2
@kemonine
You seen the backup app that the #CalyxOS folks have been doing a load of work on?
Uses the same internal AOSP stuff as Google cloud backups and ADB backup- so no need for a rooted device. Although it'll have to be built into the OS.
Its going to output encrypted backups with yubikey support. Output to USB key or Nextcloud.
https://gitlab.com/calyxos/calyxos/issues/21
#GrapheneOS is set to use it once its finished, #HashbangOS already include it in their builds.
@hexmasteen
I'd get the Mi A2, the only device on that list thats getting support of the new wave of security and privacy focused AOSP forks
These forks are different to #lineageos and other ROMs as they maintain verified boot - a powerful security feature
Talking about #CalyxOS #GrapheneOS #RattlesnakeOS #HashbangOS
Mi A2 support from calyxos.org has got some very experienced (and well respected) devs actively working on it
https://gitlab.com/calyxos/calyxos/issues/9
Otherwise consider a Pixel
dazinism
linus
Android Privacy & Security (AP)