GrapheneOS is a privacy and security focused mobile OS with Android app compatibility developed as a non-profit open source project. It's focused on the research and development of privacy and security technology including substantial improvements to sandboxing, exploit mitigations and the permission model.
GrapheneOS improves the privacy and security of the OS from the bottom up. It deploys technologies to mitigate whole classes of vulnerabilities and make exploiting the most common sources of vulnerabilities substantially more difficult. It improves the security of both the OS and the apps running on it. The app sandbox and other security boundaries are fortified. GrapheneOS tries to avoid impacting the user experience with the privacy and security features. Ideally, the features can be designed so that they're always enabled with no impact on the user experience and no additional complexity like configuration options. It's not always feasible, and GrapheneOS does add various toggles for features like the Network permission, Sensors permission, restrictions when the device is locked (USB-C and pogo pins, camera, quick tiles), etc. along with more complex user-facing privacy and security features with their own UX.
No Google apps or services
GrapheneOS will never include either Google Play services or another implementation of Google services like microG. It's possible to install Play services as a set of fully sandboxed apps without special privileges via our sandboxed Google Play compatibility layer.
They strongly recommend only purchasing one of the following devices for GrapheneOS due to better security and a long minimum support guarantee from launch for full security updates and other improvements:
Pixel 10a (experimental)
Pixel 10 Pro Fold
Pixel 10 Pro XL
Pixel 10 Pro
Pixel 10
Pixel 9a
Pixel 9 Pro Fold
Pixel 9 Pro XL
Pixel 9 Pro
Pixel 9
Pixel 8a
Pixel 8 Pro
Pixel 8
8th generation and later Pixels provide a minimum guarantee of 7 years of support from launch instead of the previous 5 year minimum guarantee. 8th generation and later Pixels also have support for the incredibly powerful hardware memory tagging security feature as part of moving to new ARMv9 CPU cores. GrapheneOS uses hardware memory tagging by default to protect the base OS and known compatible user installed apps against exploitation, with the option to use it for all apps and opt-out on a case-by-case basis for the few incompatible with it. Pointer authentication, branch target identification and other ARM security features were also introduced at the same time as hardware memory tagging.
The expectation is for people to buy a secure device meeting our requirements to run GrapheneOS. Broad device support would imply mainly supporting very badly secured devices unable to support our features. It would also take a substantial amount of resources away from our work on privacy and security, especially since a lot of it is closely tied to the hardware such as the USB-C port control and fixing or working around memory corruption bugs uncovered by our features. We plan to partner with OEMs to have devices produced meeting all our requirements, providing additional privacy/security features beyond them and ideally shipping with GrapheneOS rather than massively lowering our standards.
Just because someone is from Ukraine doesn't make them evil. The man was forcibly conscripted into the war for fucks sake. He's not exactly a fan of the government.
Secondly The founder is Canadian (Not that that should make any difference at all)
Lastly it's open source. Can you point out any issues you have with the code that is regularly poured over by security conscious individuals from all over the world?
Yeah wasnt there that one untrackable phone that ended up being a honey pot for drug dealers and the like? The government had a full backdoor and scooped all the data or something like that.
Think of it like this, if everyone is wearing the same general outfit, white or black top, with blue jeans and some kind of sneaker, the woman wearing a bright red dress will draw attention. So if everyone uses iphone and android, then when you show up connecting from a offuscated device identifier you are signaling you have data, you have tried to hide it and now they know you are either up to something or you have valuable data and now you are a target, camo in the digital age basically, better to blend than stand out
Fair point. Sometimes blending in is better done by actually blending in. Using something totally different will light up like a Christmas tree to anyone spying on you
That's my life, actually. A secret weapon becomes a target if exposed. Better to be an anonymous gifter, imo. It's certainly possible to use technology and still choose options that allow the least amount of notice. Being unremarkable is a great disguise.
Been on the dumb phone train for years, just for texts occasional call, and super cheap. I don’t waste time on a phone as there’s nothing seeking my attention. It’s small, battery lasts a week+ per charge, charges fast. My Tello plan is like 8$ a month 2 gigs data unlimited text and 100 minutes talk and even have maps on it in case I get lost in an unfamiliar area.
As pimped on The Megyn Kelly Show amongst others; this thing glows.
Lineage OS or Graphene OS are the sensible, open source alternatives.
Features like a battery kill switch are nice hardware augmentations but I only trust open source software.
It's basically AOSP (Android Open Source Project) with but with another company in the middle, who will run cloud services for you but never peek at your data....private keys. Can't access it .... blah blah blah.
Interesting. Thanks for sharing.
Highjacking top comment to make a better recommendation thats not a potential honeypot
This is pretty much the best option for anyone:
https://grapheneos.org/
GrapheneOS is a privacy and security focused mobile OS with Android app compatibility developed as a non-profit open source project. It's focused on the research and development of privacy and security technology including substantial improvements to sandboxing, exploit mitigations and the permission model.
GrapheneOS improves the privacy and security of the OS from the bottom up. It deploys technologies to mitigate whole classes of vulnerabilities and make exploiting the most common sources of vulnerabilities substantially more difficult. It improves the security of both the OS and the apps running on it. The app sandbox and other security boundaries are fortified. GrapheneOS tries to avoid impacting the user experience with the privacy and security features. Ideally, the features can be designed so that they're always enabled with no impact on the user experience and no additional complexity like configuration options. It's not always feasible, and GrapheneOS does add various toggles for features like the Network permission, Sensors permission, restrictions when the device is locked (USB-C and pogo pins, camera, quick tiles), etc. along with more complex user-facing privacy and security features with their own UX.
No Google apps or services GrapheneOS will never include either Google Play services or another implementation of Google services like microG. It's possible to install Play services as a set of fully sandboxed apps without special privileges via our sandboxed Google Play compatibility layer.
They strongly recommend only purchasing one of the following devices for GrapheneOS due to better security and a long minimum support guarantee from launch for full security updates and other improvements:
Pixel 10a (experimental) Pixel 10 Pro Fold Pixel 10 Pro XL Pixel 10 Pro Pixel 10 Pixel 9a Pixel 9 Pro Fold Pixel 9 Pro XL Pixel 9 Pro Pixel 9 Pixel 8a Pixel 8 Pro Pixel 8
8th generation and later Pixels provide a minimum guarantee of 7 years of support from launch instead of the previous 5 year minimum guarantee. 8th generation and later Pixels also have support for the incredibly powerful hardware memory tagging security feature as part of moving to new ARMv9 CPU cores. GrapheneOS uses hardware memory tagging by default to protect the base OS and known compatible user installed apps against exploitation, with the option to use it for all apps and opt-out on a case-by-case basis for the few incompatible with it. Pointer authentication, branch target identification and other ARM security features were also introduced at the same time as hardware memory tagging.
The expectation is for people to buy a secure device meeting our requirements to run GrapheneOS. Broad device support would imply mainly supporting very badly secured devices unable to support our features. It would also take a substantial amount of resources away from our work on privacy and security, especially since a lot of it is closely tied to the hardware such as the USB-C port control and fixing or working around memory corruption bugs uncovered by our features. We plan to partner with OEMs to have devices produced meeting all our requirements, providing additional privacy/security features beyond them and ideally shipping with GrapheneOS rather than massively lowering our standards.
Lead/main Graphene developer is Ukranian.
Might be no reason for concern but it made me pause my phone OS plans....
What sort of "Ukrainian" ?
That's a genetic logical fallacy first of all.
Just because someone is from Ukraine doesn't make them evil. The man was forcibly conscripted into the war for fucks sake. He's not exactly a fan of the government.
Secondly The founder is Canadian (Not that that should make any difference at all)
Lastly it's open source. Can you point out any issues you have with the code that is regularly poured over by security conscious individuals from all over the world?
Oh, the founder is Canadian! Those people are notorious for being all polite and apologizing all the time!
Seriously to your point, the fact that it is open source and a bunch of paranoid developer types are using it, it's as safe as it can get.
It’s sad that the only people who will really care about this kind of privacy are mostly criminals.
I mean, anyone who needed to get around the fake 46 administration's tyranny would too
when you're ruled by criminals, telling the truth becomes a crime.
still only "criminals"
How very conservative of you to point out that we have no privacy anymore and that’s a good thing.
"We" including our owners. Hubris has always gotten them.
The police should not have access to our private devices. Biden Admin would have arrested all of us for memes if they could.
Yeah wasnt there that one untrackable phone that ended up being a honey pot for drug dealers and the like? The government had a full backdoor and scooped all the data or something like that.
Think of it like this, if everyone is wearing the same general outfit, white or black top, with blue jeans and some kind of sneaker, the woman wearing a bright red dress will draw attention. So if everyone uses iphone and android, then when you show up connecting from a offuscated device identifier you are signaling you have data, you have tried to hide it and now they know you are either up to something or you have valuable data and now you are a target, camo in the digital age basically, better to blend than stand out
Fair point. Sometimes blending in is better done by actually blending in. Using something totally different will light up like a Christmas tree to anyone spying on you
That's my life, actually. A secret weapon becomes a target if exposed. Better to be an anonymous gifter, imo. It's certainly possible to use technology and still choose options that allow the least amount of notice. Being unremarkable is a great disguise.
A good marketing slogan. Absolutely zero backdoors for Israel to spy on you.
If you want-an open-source solution, there's Graphene OS.
Thanks.
Totally not a spy phone or Israeli bomb-phone! (Sarcasm)
Thx op, This looks like a buy for me.
Been on the dumb phone train for years, just for texts occasional call, and super cheap. I don’t waste time on a phone as there’s nothing seeking my attention. It’s small, battery lasts a week+ per charge, charges fast. My Tello plan is like 8$ a month 2 gigs data unlimited text and 100 minutes talk and even have maps on it in case I get lost in an unfamiliar area.
Anyone know anything about the Ghost phone that Dave of X-22 Report advertises?
Did they ever let Mythos have a hack at it?
I don't think the chipset on that is up to par like a Pixel phone but it looks decent. I like the battery kill switch
How in the hell do you know if intelligence agencies arent using this as a honeypot or they didnt stick something in the phone for tracking?
They would need to open source everything to make it trustworthy but that would be death for a business.
GrapheneOS still seems like the best for privacy rn. Motorola just partnered with them.
Don’t work with Verizon? Why?
Because Verizon is 'owned' by the NSA
As pimped on The Megyn Kelly Show amongst others; this thing glows.
Lineage OS or Graphene OS are the sensible, open source alternatives.
Features like a battery kill switch are nice hardware augmentations but I only trust open source software.
It's basically AOSP (Android Open Source Project) with but with another company in the middle, who will run cloud services for you but never peek at your data....private keys. Can't access it .... blah blah blah.
Thank you.