Google doesn't have the keys. Qualcomm doesn't have the keys. There is no second party able to flash firmware or OS.
you have to trust more than 1 company with device security (yes), FDE key is stored in software (yes). LGTM.
-
-
-
The misunderstanding is that it is Google's OS. It isn't. The OEM forks AOSP, and Google doesn't have keys or sources.
End of conversation
New conversation -
-
-
People in the Android ecosystem frequently assume all subpoenas end up at Google. Not true, this helps remind.
-
If the device is actually turned of, there's nothing of value that Google could provide them in terms of code signing.
-
If it's a device with Play and it's turned on, then Google does have the useful ability to push non-root app updates.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.