Just four months after the successful launch of the NitroPhone 1, we are now releasing the NitroPhone 2 and NitroPhone 2 Pro. The new NitroPhone 2/Pro is the world's most secure Android smartphone and comes with many years of software updates until 2026, combining security, privacy and ease of use with sustainability and a low price per time. The NitroPhone 2/Pro is based on the premium Pixel 6 or Pixel 6 Pro and GrapheneOS, the most hardened Android for professionals. Gain full control of your smartphone without Google and Apple!
Optional: Removed microphones, sensors and cameras make eavesdropping physically impossible. Phone calls are made with optional headset.
"If I were configuring a smartphone today, I'd use DanielMicay's GrapheneOS as the base operating system. I'd desolder the microphones." Edward Snowden, NSA whistleblower
"NitroPhone is a much better product than we did with Blackphone." Phil Zimmermann, inventor of PGP
Physical Tamper Protection
- Strong encryption and Titan M2 security chip protects your device and data against sophisticated physical attacks.
- Verified boot ensures that your operating system has not been modified.
- Automatic kill switch: Automatically shutdown after inactivity of configured time period.
- PIN layout scrambling, together with privacy screen (not included), allow entering PIN in public without being watched. Alternatively: integrated fingerprint sensor.
- The NitroPhone is delivered in a sealed box.
Protection From Spyware and Zero-Day Exploits
- Substantially hardened Android 12 for high security demands (e.g. hardened stock apps, libc, malloc, compiler toolchain, kernel, filesystem access, WebView).
- All apps are sandboxed to protect against exploitable and malicious apps.
- Hardened browser, WebView and PDF viewer.
- Lightning fast distribution of security updates until 2026.
- Protection against over-the-air exploits by isolating the baseband radio processor using IOMMU and optional LTE-only mode to significantly reduce cellular radio attack surface.
- Optional: For very high security requirements, both microphones and acceleration and rotation sensors can be removed. Indeed, acceleration and rotation sensors can be misused as microphones. This physically prevents conversations in the environment from being recorded. Phone calls can still be made with an external headset.
Privacy Protection: No Tracking, No Google
- No cloud or Google Play Services integration by default, all under your control. If required, original Google Play Services can be installed as sandboxed apps without special privileges. This novel approach leads to much better compatibility than incomplete reimplementations like microG while providing higher security. Note: This is work-in-progress and some apps may not work as expected.
- Tracking protection: Apps can't access device IMEI and serial numbers, SIM card serial numbers, subscriber ID, MAC address etc.
- Per-connection MAC randomization prevents tracking by nearby WiFi scanners.
- Firewall: Granular network and sensors permissions (e.g. GPS) toggle for each app.
- Default Indicators for active camera, microphone, and location.
Inexpensive and Sustainable
For industrialized smartphones, a long lifespan is the most effective way to reduce resource consumption per user. As with hardly any other Android smartphone, security updates are provided for the NitroPhone 2 for up to 5 years, namely until October 2026. Calculated over this lifetime, the phone only costs from €0.50 per day.
Easy Usability for Everybody
- No bloatware. Minimal secure system with few apps by default. Additional apps can be installed manually; updates have to be confirmed.
- End-to-end encrypted automatic backups to USB drive or to any cloud storage (e.g. Nextcloud).
Open Source and Attestation
- Open source allows verifying absence of backdoors.
- Remote attestation: hardware-based verification of the authenticity and integrity of phone's software.
Who Needs NitroPhone?
- Professionals who need a secure smartphone for sensitive data and communication.
- People who want to use a privacy-friendly smartphone (without Google, without Apple).
- Companies who want to provide their employees a secure smartphone.
- Journalists, activists and NGOs who need to protect themselves and their contacts.
Why Google Pixel Smartphone?
- Unlike most other devices, Pixel smartphones include a Titan M2 secure element that enables Verified Boot.
- Pixel smartphones are supported by Android by default, so security updates can be distributed quickly.
- Pixel smartphones allow installation of custom software such as GrapheneOS. Ironically, this makes them some of the best hardware for Google-free smartphones.
Comparison With e.g. LineageOS, CalyxOS, /e/
LineageOS, CalyxOS, /e/ and other Android distributions essentially rely on the standard Android which only comes with its own selection of apps. GrapheneOS, on the other hand, is an elaborately hardened Android and should therefore be seen as its own operating system. In addition, security updates are often provided late by the distributions mentioned at the beginning.
Comparison With Linux Phones
Establishing Linux for smartphones as a third ecosystem alongside iOS and Android is a promising goal. In addition to thousands of existing applications, user freedom, transparency and security, the usability on both smartphones and large screens is compelling. Unfortunately, "Linux for Smartphones" is not yet mature enough for most users. In order to offer our customers a professionally usable, stable and secure smartphone, we have chosen GrapheneOS.