Conversation

Daniel Micay
@DanielMicay
Replying to
@artem_AI
BlackBerry Key 2 isn't even close to matching the security of a Pixel running the stock OS. It has far worse hardware / firmware security and runs an outdated version of Android without all the optional security features. It's only branded as being private and secure. That's it.
1
1
Daniel Micay
@DanielMicay
Replying to
@DanielMicay
and
@artem_AI
GrapheneOS takes AOSP and makes substantial privacy and security improvements beyond the baseline. It also doesn't bundle Play Services, which is itself a massive privacy improvement. What does the BlackBerry Key 2 have other than bundling dubious apps with encryption backdoors?
1
2
Daniel Micay
@DanielMicay
Replying to
@DanielMicay
and
@artem_AI
BlackBerry builds in encryption backdoors to their services - in cases where they even offer E2E encryption at all. They use legacy cryptography too. Anyway, TCL makes the Key 2, not BlackBerry. They just licensed their branding and apps to them. It's not at all comparable.
1
2
artem 🌎
@artem_AI
Replying to
@DanielMicay
Thank you for the detailed response. Any thoughts on how resistant GrapheneOS is to Cellebrite? In other words, how secure is my data when I cross an international border or get stopped by the police and have my phone seized?
1
Daniel Micay
@DanielMicay
Replying to
@artem_AI
It has substantial hardening against exploitation along with attack surface reduction such as disabling adding new USB peripherals after the device has been unlocked. There are per-profile encryption keys and strong hardware/firmware protections for encryption. Won't find better.
1
3
Daniel Micay
@DanielMicay
Replying to
@DanielMicay
and
@artem_AI
If you set a strong passphrase for the profile and reboot the device first, you aren't depending on any of that aside from defending against a persistent compromise. Not sure what any of this is going to accomplish for you if they simply coerce you into unlocking your device.
1
2