NitroPhone - Most Secure Android on the Planet
We are very excited to introduce the NitroPhone! The NitroPhone combines security, privacy and ease of use with modern hardware. It is based on the high-quality Pixel 4a and GrapheneOS, the most hardened Android for professionals. Gain full control of your smartphone without Google and Apple! The NitroPhone is now available in the online shop.
"If I were configuring a smartphone today, I'd use DanielMicay's GrapheneOS as the base operating system. I'd desolder the microphones." Edward Snowden
Physical Tamper Protection
- Strong encryption and Titan M security chip protects your device and data against sophisticated physical attacks.
- Verified boot ensures that your operating system has not been modified.
- Automatic kill switch: Automatically reboot after inactivity of configured time period.
- PIN layout scrambling, together with privacy screen (not included), allow entering PIN in public without being watched. Alternatively: integrated fingerprint sensor.
Protection From Spyware and Zero-Day Exploits
- Substantially hardened Android OS for high security demands (e.g. hardened stock apps, libc, malloc, compiler toolchain, kernel, filesystem access, WebView).
- All apps are sandboxed to protect against exploitable and malicious apps.
- Hardened browser, WebView and PDF viewer.
- Lightning fast distribution of security updates.
- Protection against over-the-air exploits by isolating the baseband radio processor using IOMMU and optional LTE-only mode to significantly reduce cellular radio attack surface.
- Optional: Physical removal of all microphones. A headset can be connected for voice communication.
Privacy Protection: No Tracking, No Google
- No cloud or Google Play Services integration by default, all under your control. If required, original Google Play Services can be installed as sandboxed apps without special privileges. This novel approach leads to much better compatibility than incomplete reimplementations like microG while providing higher security. Note: This is work-in-progress and some apps may not work as expected.
- Tracking protection: Apps can't access device IMEI and serial numbers, SIM card serial numbers, subscriber ID, MAC address etc.
- Per-connection MAC randomization prevents tracking by nearby WiFi scanners.
- Firewall: Granular network and sensors permissions (e.g. GPS) toggle for each app.
- Default Indicators for active camera, microphone, and location.
Easy Usability for Everybody
- No bloatware. Minimal secure system with few apps by default. Additional apps can be installed manually; updates have to be confirmed.
- End-to-end encrypted automatic backups to USB drive or to any cloud storage (e.g. Nextcloud).
Open Source and Attestation
- Open source allows verifying absence of backdoors.
- Remote attestation: hardware-based verification of the authenticity and integrity of phone's software.
Who Needs NitroPhone?
- Professionals who need a secure smartphone for sensitive data and communication.
- People who want to use a privacy-friendly smartphone (without Google, without Apple).
- Companies who want to provide their employees a secure smartphone.
- Journalists, activists and NGOs who need to protect themselves and their contacts.
Hardware
The hardware is a high-quality Google Pixel 4a, black, 128 GB storage.- RAM: 6 GB
- 147.6 mm (5.81"), 1080 x 2340 pixel, full-screen display with punch-hole front camera
- Rear camera: dual pixel technology with 12.2 MP
- Processor (CPU): Qualcomm Snapdragon 730G, Octa-core
- Titan M security chip
- Ports: USB-C, 3.5 mm audio jack
- Wi-Fi 802.11 a/b/g/n/ac, Bluetooth, NFC
- Fingerprint sensor
- Dimensions: 144 x 69.4 x 8.2 mm
- Weight: 143 g
Why Google Pixel Smartphone?
- Unlike most other devices, Pixel smartphones include a Titan M secure element that enables Verified Boot.
- Pixel smartphones are supported by Android by default, so security updates can be distributed quickly.
- Pixel smartphones allow installation of custom software such as GrapheneOS. Ironically, this makes them some of the best hardware for Google-free smartphones.
Comments
1. Weiß Daniel Micay überhaupt von diesem Geschäftsmodell, dass mit seiner Arbeit Geld gemacht wird, indem man ein älteres Pixel mit gehörigem Preisaufschlag versieht, nur weil GrapheneOS schon drauf ist? Was jeder 08/15-User, der vier Mausklicks beim GrapheneOS-Webinstaller zusammenbringt, auf jedem Pixel selbst und kostenlos machen kann?
2. GrapheneOS ist eine One-man-show von Micay, und wenn er wieder am Rad dreht, ist Sense damit... einfach mal auf YouTube beim Kanal Techlore nach "The most toxid community" suchen....
3. Ist die Aussage komplett falsch, dass Calxy und /e/ nur Standard-Android mit eigenen Apps sind!
1. Ja, weiß bescheid und ist abgestimmt.
2. Ja, wissen wir auch, nach unserer Einschätzung ist es aber mit Abstand das sicherste Android, entsprechend müssen wir mit diesem "Risiko" leben. Mittelfristig ist der Plan GrapheneOS beliebter zu machen und auf ggf. zur Entwicklung beizutragen.
3. Ja, das ist durch den Marketingcharakter dieses Announcements wahrscheinlich ein wenig vereinfacht dargestellt, verglichen mit GrapheneOS sind insbesondere das play-store-sandboxing sowie die low-level Härtungen ein Alleinstellungsmerkmal. Falls das aber vollkommen falsch ist, nehmen wir gerne Vorschläge an um hier präziser zu sein.
attestation.app/about meint:
TOFU stiftet im Fall des NitroPhones ja nun erst mal kein Vertrauen...
github.com/GrapheneOS/Auditor/blob/17/app/src/main/java/app/attestation/auditor/AttestationProtocol.java#L119-L192 besagt u.a.:
Verstehe ich das richtig, dass das Vertrauen in die erwähnte Auditor-App-Verifikation im Wesentlichen darauf basiert, dass
Pages
Add new comment