Thank you for the explanation.
So what I understand in simple terms, it is difficult to make a secure OS for a particular device when there are vulnerabilities in the hardware of that device.
Conversation
I've been researching Roms for the iconic Nexus 5 and I liked the Rom Nitrogen 7 which is a rom based on the Nougat 7 Rom, dev solved a security flaw in wifi that allowed the device to be compromised ....
1
So far it was the fastest Rom made for Nexus 5 but unfortunately has bugs in mobile communication and bluetooth among other bugs,the project has been discontinued.
So I found this that is also based on the Nougat 7.1 Rom and they offer updates every week
lineageos.org
1
When you have time, I'd like to know your opinion about that Rom. Take the time you need to analyze.
Thank you.
1
Replying to
There's no ROM for the Nexus 5 with anything close to full security for drivers or firmware. It has hundreds of unresolved serious security bugs. It's not a safe device, regardless of which OS you use on it. All these ROMs also substantially reduce security compared to AOSP too.
1
1
Replying to
If you care about security, you need to use a device that isn't end-of-life. Shipping the AOSP security updates is not shipping full security updates. Those ROMs explicitly lie to you about the security patch level. The security bulletins include far more issues than they fix...
1
Replying to
Even on a device where full security updates are available *and* the ROM ships all the security updates (i.e. they actually bundle all the updated firmware and drivers, which is rare), they usually lack a security update model and roll back / damage security features in AOSP.
1
Replying to
If you want a secure device, use an iPhone or a Pixel with the stock OS. If you can't afford the current generation, use an iPhone from the previous generation. There are only a couple non-Pixel Android devices with decent security and none are truly competitive with a Pixel.
2
Replying to
Nitrogen 7.1 is based on AOSP
I think devs do not want to let certain devices die. forum.xda-developers.com/google-nexus-5
2
And they are solving vulnerabilities also there are already some Oreo 8.0 roms but they are still not stable
and some are based on AOSP
1
Replying to
It's packed full of unpatched security vulnerabilities. Every Android OS is based on AOSP. I'm not sure why you're stating that. AOSP security updates only cover half of the vulnerabilities in the monthly security updates. These ROMs don't have the rest and are unsafe to use.
Replying to
On a Nexus 5, even with the latest AOSP security update via a ROM incorporating it, you're vulnerable to hundreds of published vulnerabilities in the drivers and firmware. It gets worse each month, and attackers have had access to the oldest unfixed vulnerabilities for years...
1
1
4
Replying to
It's also packed full of other unfixed kernel vulnerabilities since 3.4 isn't maintained. Truly maintaining an OS for it would require using a mainline kernel and rewriting all drivers to work there. They aren't doing that. Even if someone did that, there aren't firmware updates.
1
1
Show replies