GrapheneOSNov 22

France's cybersecurity agency was previously actively using GrapheneOS. They helped us by auditing our code and submitting bug reports such as this one:

https://github.com/GrapheneOS/hardened_malloc/issues/133

They also made suggestions for security improvements to improve protection against exploits.

Show threadGrapheneOSNov 22
France was actively using GrapheneOS on a national level via ANSSI. They benefited from our open source code available to them for free as it is to everyone else in the world. This makes it all the more ridiculous that French state agencies are now heavily attacking GrapheneOS.
Show threadGrapheneOSNov 22
We're being contacted by a bunch of journalists about French law enforcement agencies sending out warnings about GrapheneOS and contacting the media to fearmonger with false and unsubstantiated claims. Meanwhile, ANSSI actively sought out our code to defend their infrastructure.
AntsyboiNov 22
Show threadGrapheneOS
Every user of Android and other Linux distributions, macOS and iOS in France has benefited from GrapheneOS contributing to open source projects used in these systems. Ideas we came up with for defenses were also deployed in these. French law enforcement literally uses our code.
Nov 22 at 3:23pmWeb
Show threadGrapheneOSNov 22
Based on our update server download statistics, GrapheneOS is approaching 400k users around the world. A majority of those users are in Europe with a large number in France. Only a small handful of people being arrested who use it is in fact strong evidence against their claims.
Show threadGrapheneOSNov 22

Meanwhile, the FBI and European law enforcement facilitated years of organized crime in Europe via Operation Trojan Shield while infringing on our copyright and trademarks. How about they start by arresting themselves? See our other thread about this:

https://grapheneos.social/@GrapheneOS/115589833471347871

Show threadGrapheneOSNov 22

Here's France's ANSSI agency proposing an exploit protection to defend against apps being exploited:

https://github.com/GrapheneOS/os-issue-tracker/issues/1118

Today, our restrictions for Dynamic Code Loading via both memory and storage cover protecting against this and are enforced for the whole base OS.

Native libraries loading protection · Issue #1118 · GrapheneOS/os-issue-tracker

Hi I've implemented a small patch for android and I wondered if you would be interested in it : Its motivation is to allow a developer or a packager of an app to forbid the loading by an applicatio...

GitHub
Show threadadison verliceNov 22
@GrapheneOS let me propose a better solution. let's make android from a simple Java VM loader to a type1 hypervisers. let's let android applications basically run like qubes on qubesos
Qubes OS: A reasonably secure operating system

Qubes is a security-oriented, free and open-source operating system for personal computers that allows you to securely compartmentalize your digital life.

Qubes OS
Show threadGrapheneOSNov 22
@adisonverlice Running Android apps in a VM wouldn't involve anything special with Java/Kotlin. We're already planning to much more heavily use virtualization than the current usage including for sandboxing apps or an equivalent to profiles.
Show threadadison verliceNov 22
@GrapheneOS aw. I guess what I meant was a type-1 hyperviser like architecture where apps basically get their own hardware backed VMs. i'm guessing this could be done with something like pkvm similar to AVF?
AVF architecture  |  Android Open Source Project

Android Open Source Project
Show threadstateNov 22
@GrapheneOS
It sounds like the account talking to stinger, doesn't understand the language, understandable that if the account offering is french, but, would be a factor in the undersanding in coding or not? Also, after reading about what the FBI did, now gets me to think the account offering is law enformenct and with some knowledge of programing but not understanding what stinger is actually saying.
Show threadxyhhx 🔻Nov 22
@GrapheneOS okay based????
Show threadSergiusNov 23
@GrapheneOS 400K 🎉