There's no ROM for the Nexus 5 with anything close to full security for drivers or firmware. It has hundreds of unresolved serious security bugs. It's not a safe device, regardless of which OS you use on it. All these ROMs also substantially reduce security compared to AOSP too.
Conversation
Replying to
If you care about security, you need to use a device that isn't end-of-life. Shipping the AOSP security updates is not shipping full security updates. Those ROMs explicitly lie to you about the security patch level. The security bulletins include far more issues than they fix...
1
Replying to
Even on a device where full security updates are available *and* the ROM ships all the security updates (i.e. they actually bundle all the updated firmware and drivers, which is rare), they usually lack a security update model and roll back / damage security features in AOSP.
1
Replying to
If you want a secure device, use an iPhone or a Pixel with the stock OS. If you can't afford the current generation, use an iPhone from the previous generation. There are only a couple non-Pixel Android devices with decent security and none are truly competitive with a Pixel.
2
Replying to
Nitrogen 7.1 is based on AOSP
I think devs do not want to let certain devices die. forum.xda-developers.com/google-nexus-5
2
Replying to
Everything involving Android is based on AOSP. It's a silly statement. As I explained, there is no secure ROM available for the Nexus 5. Any claiming to have the latest security patch is being dishonest (quite concerning!), because they don't have the driver and firmware updates.
1
Replying to
There's no option available for the Nexus 5 that isn't incredibly insecure. You should understand that choosing to use a Nexus 5 is a choice to use a device with serious unpatched vulnerabilities. The monthly security patches include far more than just AOSP security patches.
1
Replying to
There are options even for Nexus 4 they are not perfect roms, just like the stock roms are also not perfect. In security nothing is impossible I think you agree.
I do not like Iphone and I'm not going to buy another phone.
2
Replying to
Those ROMs are all incredibly insecure. They're vulnerable to hundreds of serious disclosed vulnerabilities in the drivers, firmware and kernel. They lack current generation exploit mitigations throughout the stack and attackers have years to get reliable exploits working...
2
Replying to
Their updates don't provide full security updates for devices not receiving those updates from the vendors. In fact, they don't even provide full security updates many of the devices where that's still possible and quite easy to do since they don't always bundle drivers/firmware.
Replying to
Please read what I wrote in my responses. The security patch level in ROMs is usually inaccurate and often explicitly dishonest. They claim to have the latest patch level while not fixing half of the vulnerabilities. AOSP security updates only cover half of the security updates.
1
Replying to
In addition to that, ROMs lack the same security of a production quality build of AOSP. They disable or damage various security features and lack decent security for their builds and updates. They ship very experimental code with lots of regressions / bugs impacting security too.
Replying to
Vendors do not want to know about security they just want to know about profit
1
1
Replying to
I'm unsure what that's supposed to mean. I don't think this is a productive discussion worth continuing.
1
Show replies