| ▲ | voxadam 2 hours ago |
| While I admire GrapheneOS and its goals, I feel that until we free the proprietary baseband processors and their RTOS from the grips of Qualcomm and friends it's a pyrrhic victory, at best. |
|
| ▲ | palata 2 hours ago | parent | next [-] |
| When there isn't a perfect solution, the next best thing is... the next best thing :-). |
| |
| ▲ | 2 hours ago | parent | next [-] | | [deleted] | |
| ▲ | darkwater 2 hours ago | parent | prev [-] | | Unless the next best thing makes you think you are already achieving the "perfect solution" for what you think you care about, but in truth does not. I'm not a mobile phone security expert but my feeling is that in the case of GrapheneOS - which target is probably high-profile people at risk of state actors et similia attacks - a zero-day in the closed source firmware from Qualcomm will probably screw you anyway. I understand that you are anyway reducing the attack surface (now they need to target the modem firmware specifically), I understand the concept of security in depth and I also understand that by using GrapheneOS you are already placing mitigations for many other known and unknown attack vectors. But still... | | |
| ▲ | Tharre an hour ago | parent | next [-] | | > a zero-day in the closed source firmware from Qualcomm will probably screw you anyway. All the devices that GrapheneOS supports implement a clear separation of the baseband and the CPU in the form of SMMU, ARMs version of IOMMU. So a zero-day in the baseband does not immediately screw you - unless the code on the CPU side also contains vulnerabilities or there is a major flaw in the SMMU implementation that somehow breaks isolation. | | |
| ▲ | darkwater an hour ago | parent [-] | | Thanks for the clarification (and to the others that answered as well). I probably explained myself in a shitty manner, I didn't try to downplay GrapheneOS efforts, and I should have kept my initial statement about "next best thing can create a false sense of completeness" as a generic remark and not specific to GrapheneOS, for which I don't have enough knowledge to know if it applies or not. |
| |
| ▲ | cartoonworld 2 hours ago | parent | prev | next [-] | | fyi a Cell Site Simulator can masquerade as the legitimate telco operator and push type 0 messages to the handset. What that means is they can push malicious settings and configurations (Definitely) and probably malicious firmware to the handset at will. They don't need to code this, they buy the software packages from the usual suspects. Adversary simply needs to put a drt box or a hailstorm or what-not close enough to the handset to do the work. The baseband can do a lot, it has dma (if I recall correctly) and can almost certainly screen look, and extract information from some but not all base bands. This varies. GrapheneOS cannot really influence this, but hardened_malloc could conceivably help. What would be great is a bench firmware re-flash, but I don't want to do this every single day. | | |
| ▲ | evolve2k 19 minutes ago | parent | next [-] | | I don’t have the source (I’ll have to try find it), but I read that the cell site simulators can work on 4G and earlier but don’t work on 5G. So one thing folks can do is set ur phone to use 5G networks only (unless ur stuck and then u can make it looser but be aware your less protected at that time). I do this on iOS I’m sure it’s do-able on GrapheneOS and hopefully on Android too. | | |
| ▲ | cartoonworld a minute ago | parent [-] | | 5G CSS is harder yes, but keep in mind that most 5G is the 5G_NSA variety, and is really just riding on the same cell bands, no mmwave here. You probably notice that your phone often slips out of 5g, or you inhabit different modes here. Essentially, 5G is sort of a lie. Phones spend a lot of time exchanging information via 4g/lte, and just like 2g/3g and 3g/4g, there are simply downgrades that can be performed in the field. 5G matters not for this. |
| |
| ▲ | ylk an hour ago | parent | prev [-] | | > The baseband can do a lot, it has dma There's an IOMMU: > Is the baseband isolated?
> Yes, the baseband is isolated on all of the officially supported devices. Memory access is partitioned by the IOMMU and limited to internal memory and memory shared by the driver implementations. [...] https://grapheneos.org/faq#baseband-isolation > GrapheneOS cannot really influence this, but hardened_malloc could conceivably help. They can and do, see above. But I don't see how hardened_malloc is related to the baseband doing DMA. |
| |
| ▲ | subscribed 2 hours ago | parent | prev | next [-] | | So no, their target is people who marginally care about privacy and security but don't want to use iOS. I don't think they target any particular demographic but I see security engineers and activists among users. And it's not only security - simple stuff like USB data off unless the phone is unlocked, native call recording, much enhanced user profiles (to separate data mining apps like Uber or Instagram from your financial affairs), etc. And yes, it's about reducing the attack vector. On most other handsets you'll get most of the fixes 6 months or a year later. At best. | |
| ▲ | 1dom 2 hours ago | parent | prev [-] | | I think the appeal and use case for Graphene and similar OS for most users is the Google/privacy/ownership type argument. I do understand your point that people at risk of state level attacks might get a false surface level appearance of defence from this. But then anyone who's a target of state level attacks and is making OS decisions based on a surface level understanding of the tech is not going to have a good time anyway. |
|
|
|
| ▲ | nickorlow an hour ago | parent | prev | next [-] |
| iirc Graphene is in talks with an unnamed HW vendor to make a grapheneos specific phone. They refer to the vendor as someone who makes phones and you've likely heard of, but haven't given any more info otherwise. |
| |
|
| ▲ | 2 hours ago | parent | prev | next [-] |
| [deleted] |
|
| ▲ | dj0k3r 2 hours ago | parent | prev | next [-] |
| That and blocking the query all apps feature on android |
|
| ▲ | direwolf20 an hour ago | parent | prev [-] |
| Do you also need the WiFi chip to be fully free? |
