You weren't toldn to blindly trust the hardware. Using GrapheneOS is advised because the hardware can't be trusted.
The guidance given was stating that regardless of a device having 'kill switches' you still have to trust the hardware.
Specifically regards the Pinephone for example.
You cannot avoid trusting the hardware manufacturer for the SoC, the overall device and other trusted components.
Pinephone uses components with serious security issues and doesn't configure the SoC securely. They can't provide the standard expected security updates and the device is missing most hardware-based security features like those depending on a secure element and verified boot.
Hardware kill switches don't make up for having lots of security issues in hardware, firmware and especially software. Using an OS with nearly non-existent application security model, lack of modern exploit mitigations, lack of memory safe language adoption, etc. is not progress.
Android Open Source Project is a Linux distribution, as is GrapheneOS. A substantial portion of our work is on the Linux kernel. We've made significant upstream contributions to the Linux kernel project with the bugs we've found, patches we've provided and code review.
An operating system doesn't need to use systemd, glibc, gcc/binutils, pipewire/pulseaudio, Wayland/X11, GNOME/KDE, etc. to be Linux. Linux is a kernel.
The radios and other peripheral components included in the devices we support are isolated. The common claim that cellular radios aren't isolated is completely false. What sets GrapheneOS apart is that regardless of any 'backdoors' (hypothetical until proven otherwise) is that, like RCE exploits similar to those recently discovered/patched by Googles Project Zero in the baseband, actors will still need to have an OS based exploit on top to compromise your data etc. No other OS provides the level of protection that GrapheneOS offers.
No external actor has ever claimed to have compromised a GrapheneOS Pixel. This includes third party state affiliated operators such as Cellebrite. They however are focusing a lot on older generation Qualcomm based Pixels and may have something in the next 12-18 months. Which is again why we advise uaing a modern OEM hardware firmware/driver supported device. The likes of which Pine/Libre are not.
MetropleX [GrapheneOS] ⚡🟣
npub1gd…7cn8c
2023-06-26 02:45:35
in reply to nevent1q…srgu
Author Public Key
npub1gd3h5vg6zhcuy5a46crh32m4gjkx8xugu95wwgj2jqx55sfgxxpst7cn8cPublished at
2023-06-26 02:45:35Event JSON
{
"id": "80fae6c2faac5183eaab0bd9e6a57f83b68e8944e4489f04339cf6018eb1cd86",
"pubkey": "43637a311a15f1c253b5d60778ab7544ac639b88e168e7224a900d4a41283183",
"created_at": 1687740335,
"kind": 1,
"tags": [
[
"e",
"acb73428bab33c80cfd426fc13e035ce15c0081bcc016f9f60284c0ca6e09557",
"",
"reply"
],
[
"p",
"a25334648b969fb5b0784eb068a31013cce8b417ccbc45ca7d9ac7ed9e39ed39"
]
],
"content": "You weren't toldn to blindly trust the hardware. Using GrapheneOS is advised because the hardware can't be trusted.\n\nThe guidance given was stating that regardless of a device having 'kill switches' you still have to trust the hardware.\n\nSpecifically regards the Pinephone for example.\n\nYou cannot avoid trusting the hardware manufacturer for the SoC, the overall device and other trusted components. \n\nPinephone uses components with serious security issues and doesn't configure the SoC securely. They can't provide the standard expected security updates and the device is missing most hardware-based security features like those depending on a secure element and verified boot.\n\nHardware kill switches don't make up for having lots of security issues in hardware, firmware and especially software. Using an OS with nearly non-existent application security model, lack of modern exploit mitigations, lack of memory safe language adoption, etc. is not progress.\n\nAndroid Open Source Project is a Linux distribution, as is GrapheneOS. A substantial portion of our work is on the Linux kernel. We've made significant upstream contributions to the Linux kernel project with the bugs we've found, patches we've provided and code review.\n\nAn operating system doesn't need to use systemd, glibc, gcc/binutils, pipewire/pulseaudio, Wayland/X11, GNOME/KDE, etc. to be Linux. Linux is a kernel.\n\nThe radios and other peripheral components included in the devices we support are isolated. The common claim that cellular radios aren't isolated is completely false. What sets GrapheneOS apart is that regardless of any 'backdoors' (hypothetical until proven otherwise) is that, like RCE exploits similar to those recently discovered/patched by Googles Project Zero in the baseband, actors will still need to have an OS based exploit on top to compromise your data etc. No other OS provides the level of protection that GrapheneOS offers.\n\nNo external actor has ever claimed to have compromised a GrapheneOS Pixel. This includes third party state affiliated operators such as Cellebrite. They however are focusing a lot on older generation Qualcomm based Pixels and may have something in the next 12-18 months. Which is again why we advise uaing a modern OEM hardware firmware/driver supported device. The likes of which Pine/Libre are not.",
"sig": "a7007f9ca0a076684792fb402553a521bdc13208284f393f3e26c6b8ed9c86f53cdd392a6019648e968e9ac56fd5c5fef4bcae31b453e4f33af4fc967c1a5ba6"
}