Secure Mobile OS
#12
(12-10-2020, 03:42 PM)ryo Wrote:
(12-10-2020, 08:50 AM)displacefish Wrote:
(12-10-2020, 06:41 AM)ryo Wrote: Mind you, I'm using 2 chat apps (3 if you count the Jabber server at work), neither of them are considered secure.
They're both closed source even.
But because of that, I keep the risks in mind, and not simply assume that they will keep me safe.
And therefore, the logical thing to do is employ techniques like app isolation.

My point is that being careful is great, and no security system can't be improved by using it carefully. The most hardened, airgapped system in the world can be defeated by a privileged human logging in and manually running malware with root access out of carelesness. However, the opposite is true as well: you can be as careful as you want, but there's always both the possibility of slipping up (we're all human after all), or that it turns out you weren't careful enough.

That's what defense in depth is. More layers of defense, rather than trusting any single one to be infallible. Being careful is a layer of defense like any other - a perfectly good one, but best used in complement with others.
That's a very good point.

(12-10-2020, 08:50 AM)displacefish Wrote: While I'm all for being paranoid, the fact is Signal is open source, and has received plenty of scrutiny. They're using established crypto protocols (Telegram, looking at you here) and no significant issues have come up yet. I've heard plenty of criticism about requiring a phone number to sign up, which was a privacy issue, but I believe that has been relaxed some time ago.

In the end, one thing is true: if all your acquantainces use Facebook Messenger, and you download The Perfect Secure Chat App™, your conversations are all still gonna be as secure as Facebook Messenger. If Signal is what you can convince your family, friends, etc. to use, because things like Matrix or Jami aren't polished enough or suffer from issues due to their federated and p2p nature (respectively), then it's far, far better to talk to everyone over Signal, than to have all your favourite chat software installed but still talk to people over Whatsapp and the like because nobody else is using it.
I don't necessarily consider myself paranoid, rather I question everything regardless of security.
Of course you can say "my app is fully open source, therefore you can see for yourself that no spyware is available" as much as you want, it takes 1 OTA update to sneak in spyware in a way (or even pre-install it) to completely destroy the entire point you made.

The most obvious example of that is Android.
Android is open source, private, secure, etc as long as Google remains entirely absent.
"I can't install anything, so I'll install the Play Store and login to my Gmail account" → privacy is gone.

So when someone installs Anbox on a Linux phone to use a couple apps not available on Linux, privacy is gone?


Messages In This Thread
Secure Mobile OS - by PineSupporter - 12-09-2020, 06:32 PM
RE: Secure Mobile OS - by ryo - 12-10-2020, 12:05 AM
RE: Secure Mobile OS - by PineSupporter - 12-10-2020, 01:46 AM
RE: Secure Mobile OS - by ryo - 12-10-2020, 03:47 AM
RE: Secure Mobile OS - by displacefish - 12-10-2020, 04:06 AM
RE: Secure Mobile OS - by ryo - 12-10-2020, 06:41 AM
RE: Secure Mobile OS - by displacefish - 12-10-2020, 08:50 AM
RE: Secure Mobile OS - by ryo - 12-10-2020, 03:42 PM
RE: Secure Mobile OS - by PineSupporter - 12-12-2020, 07:53 PM
RE: Secure Mobile OS - by ryo - 12-13-2020, 07:31 AM
RE: Secure Mobile OS - by PineSupporter - 12-13-2020, 10:42 AM
RE: Secure Mobile OS - by ryo - 12-13-2020, 04:44 PM
RE: Secure Mobile OS - by fsflover - 12-10-2020, 07:58 AM
RE: Secure Mobile OS - by displacefish - 12-10-2020, 07:33 PM
RE: Secure Mobile OS - by PineSupporter - 12-12-2020, 03:47 PM

Possibly Related Threads…
Thread Author Replies Views Last Post
  US Mobile, via T-Mobile, won't support Pinephone Pro - SOLVED, SIMPLY jovval 11 5,752 07-28-2024, 03:42 PM
Last Post: dchang0
  can I retrieve accidentally deleted voice mail with T mobile ? HLing 4 1,786 12-13-2023, 01:24 AM
Last Post: oldschool
  New Zealand network providers mobile data Linux2thabone 3 3,808 08-05-2023, 06:17 AM
Last Post: SchizoPinePhone225
  Problems updating KDE Plasma Mobile OS IMSAI8080 6 4,387 06-30-2023, 11:39 PM
Last Post: ionmich
  Current Situation With Setup and Carrier Activation With Tracfone Verizon T-Mobile pinephoneuser22 0 1,052 05-26-2023, 08:40 PM
Last Post: pinephoneuser22
  Cannot call at several mobile phones Gon 3 1,945 05-04-2023, 05:18 AM
Last Post: Gon
Lightbulb pinephone mobile dock jasmin763 2 2,121 06-06-2022, 09:06 AM
Last Post: 98cwitr
Question Mobile data suddenly gone epiii2 1 1,666 05-23-2022, 04:57 PM
Last Post: epiii2
  Mobile case wanted - with wireless charging! thorensjubilee 4 3,535 03-19-2022, 10:29 AM
Last Post: vap0rtranz
  mobile data jimbusch1 5 4,502 02-24-2022, 02:41 PM
Last Post: amindfv

Forum Jump:


Users browsing this thread: 1 Guest(s)