Can someone explain this? I've used custom ROMs back in the day (Cyanogen!) but I'm not familiar with GrapheneOS.
I remember Cyanogen ships without Google Play etc., right? (Because if you install Google Services and a bunch of crap from their store (theirs and otherwise) that spies on you, it defeats the purpose of a privacy preserving OS.
So I'm assuming Graphene is at least as strict as that? (Well Cyanogen at least give you the option of installing all that crap but that would seem to defeat the purpose in this case.)
But more broadly I'm not sure I understand the relevance in this particular context. The article mentions that an abuser could put spyware on your phone? Is that a realistic scenario? (Ok I suppose half the stuff on the Play store is spyware so maybe it's more realistic than I'm thinking...)
GrapheneOS allows for "twin states" with a default vanilla state and additional non obvious parallel accounts that are secured to low level milspec(?)
Popular in Ukraine for keeping captured phone data resistant to opposing forces.
Popular with outlaw gangs for annoying LEO anti gang squads.
Now recommended for battered domestic victims to keep controlling others from spying on digital habits.
An unsuspecting clueless abuser might put the spyware on the vanilla account, the victim can "live with that" assuming that the secure obscure login in safe from spyware apps on the alternative state.
Counterpoint: Not all abusers are dumb, smart people can be toxic. Also - I'm not as clear as I would like to be on the GrapheneOS isolation.
Zero Google services are shippsx by default, but you can install Play Store and Services in a sandbox and it has minimal privacy problems, depending on the permissions you give it.
Their docs are really good, not only for their phone but for learning about privacy and security: https://grapheneos.org
You could still install an app that spies on you on grapheneos because it has 99.99% android app compatibility, so if you gave an app designed for spying the relevant permissions, it would still be able to spy. No way it could hide location indicator or anything like that, but I doubt it could do that on other OSes (don't quote me on other OSes).
I mean, some obvious things are there in the article, IMHO -
- App isolation and hidden profiles (up to 32 separate profiles)
- Verified Boot (tamper detection on every startup)
So you can do stuff on there that's not going to tip off someone who's controlling enough to demand to see your phone, and so you'll at least be tipped off if someone compromises it.
> The article mentions that an abuser could put spyware on your phone? Is that a realistic scenario?
Yes, stalkerware is an entire genre of software and it is designed for exactly this purpose.
How “stalkerware” apps are letting abusive partners spy on their victims https://www.technologyreview.com/2019/07/10/134249/stalkerwa...
The Abuser in Your Pocket: How Stalkerware Threatens Women’s Privacy https://safeescape.org/stalkerware-threatens-womens-privacy/
'I thought I'd been microchipped': How abusers spy on partners with 'parental control' apps https://news.sky.com/story/i-thought-id-been-microchipped-ho...
A web search for the term will turn up many more results. Graphene OS's hardening against exploits, compared to the abysmal record of Android vendors, gives much better odds against any of these apps being able to run with elevated privileges, which means Android's sandboxing is effective.
(Happy Graphene OS user of many years here.)