Conversation

Daniel Micay
@DanielMicay
Replying to
@artem_AI
BlackBerry Key 2 isn't even close to matching the security of a Pixel running the stock OS. It has far worse hardware / firmware security and runs an outdated version of Android without all the optional security features. It's only branded as being private and secure. That's it.
1
1
Daniel Micay
@DanielMicay
Replying to
@DanielMicay
and
@artem_AI
GrapheneOS takes AOSP and makes substantial privacy and security improvements beyond the baseline. It also doesn't bundle Play Services, which is itself a massive privacy improvement. What does the BlackBerry Key 2 have other than bundling dubious apps with encryption backdoors?
1
2
Daniel Micay
@DanielMicay
Replying to
@DanielMicay
and
@artem_AI
BlackBerry builds in encryption backdoors to their services - in cases where they even offer E2E encryption at all. They use legacy cryptography too. Anyway, TCL makes the Key 2, not BlackBerry. They just licensed their branding and apps to them. It's not at all comparable.
1
2
artem 🌎
@artem_AI
Replying to
@DanielMicay
Thank you for the detailed response. Any thoughts on how resistant GrapheneOS is to Cellebrite? In other words, how secure is my data when I cross an international border or get stopped by the police and have my phone seized?
1
Daniel Micay
@DanielMicay
Replying to
@artem_AI
It has substantial hardening against exploitation along with attack surface reduction such as disabling adding new USB peripherals after the device has been unlocked. There are per-profile encryption keys and strong hardware/firmware protections for encryption. Won't find better.
1
3
Daniel Micay
@DanielMicay
Replying to
@DanielMicay
and
@artem_AI
Aside from perhaps using profiles and claiming that one of the secondary profiles had the passphrase set by someone else so you can't unlock it. Each profile has separate keys so unlocking one doesn't enable decrypting the other profiles. Hardware support is per-profile too.
2