Conversation

android will be a secure operating system out of the box one day. maybe

Quote Tweet

Nov 15, 2018

Please help get the word out about what has happened with Copperhead. They're tricking people into buying an insecure product misrepresented as hardened. It isn't even updated to Android 9 and lacks full security updates. Pixels don't receive full security updates via Android 8.

Show this thread

Daniel Micay

@DanielMicay

Replying to

@muscovitebob

AOSP 9 is already a good base. My work is on implementing further privacy and security improvements including features requiring compromises to performance, memory usage, etc. beyond what would be accepted in a mainstream operating system, at least by default.

1:24 AM · Nov 16, 2018Twitter Web Client

Likes

Boris “still masking” Shilov

@muscovitebob

Nov 16, 2018

Replying to

@DanielMicay

you’re doing the lords work and i have no advice except the usual

Quote Tweet

Dave Holmes

@DaveHolmes

Jan 10, 2018

The Mark Wahlberg story in my book has never been more vital, revealing and relevant.

Replying to

It's very difficult to earn money because I want to release the work as permissively licensed open source projects. I'm moved to not providing any source code licenses until I receive funding. github.com/AndroidHardeni is MIT licensed because I got initial funding for the work.

Show replies

Replying to

and

The main weakness that's more and more glaring is the need to replace the Linux kernel with a microkernel. The progress on kernel exploit mitigations and particularly attack surface reduction in Android doesn't make up for it becoming increasingly complex with each release.

Replying to

and

There's tons of work being done on userspace hardening including splitting up monolithic processes into sandboxed components, moving to memory safe languages, etc. The kernel remains a massive C codebase in a single address space where mitigations don't work as well as elsewhere.