In search of a Secure Mobile Phone

As an iPhone user myself, I’ve had my fair share of frustrations with Apple’s approach to security and data protection. When it launched, I embarked on a journey to try to implement Advanced Data Protection in iOS, a journey that took over a year working with Apple support which resulted in having to create a whole new iCloud account and “delete” the data from the other account.

It was with the launch of yet another expensive phone model that I just can’t justify for a device I use less and less each day, and with the gold rush to implement AI and where the data might end up, it got me thinking: what alternatives would work best to keep my data secure and private? Yes Apple have said the data remains on the device, is secure and private, but gateways are being slowly opened out to other providers, how long before you have no other option but to allow the analytics and data to flow.

A more serious contender than iOS, in the secure mobile OS arena is Graphene OS. Respected cybersecurity professionals, endorse it for its robust security features, journalists targetted by nation states and well Edward Snowden uses this as his daily driver. It cn be a chaper alternative to iPhone. You start with a Google Pixel phone, pickup an A model with I think upto 7 years OS support now, which might seem counterintuitive given Google’s reputation as a data-hungry giant. However, this is precisely where Graphene OS shines – by providing an unadulterated and secure software experience, free from the compromises that come with Google’s software.

So, what is Graphene OS, and why should you consider it? Graphene OS has its roots in CopperheadOS, a custom ROM designed for Android devices. In 2016, Snowden-backed OpenWorms announced the creation of CopperheadOS, which aimed to provide an unbreakable and secure operating system for mobile devices. The project was initially met with enthusiasm from the cybersecurity community, but it ultimately stalled due to funding issues.

Undeterred by this setback, a new team picked up where CopperheadOS left off and gave birth to Graphene OS in 2019. This rebranded effort aimed to address some of the previous limitations while building upon the original concept. Graphene OS boasts a reputation for being one of the most secure mobile operating systems available, thanks to its rigorous testing and validation process.

One reason why you might choose Graphene OS is that it’s based on the Android Open Source Project (AOSP). This allows users to start with an existing Google Pixel phone or any other AOSP-compatible device. Once installed with Graphene OS, your device becomes a secure, open-source powerhouse, free from Google’s proprietary software. You can still have access to the Google Play Store if needed and all your favorite apps, but now you can enjoy them without compromising your data.

However, it’s essential to note that Graphene OS does require some effort to get everything working smoothly. You’ll need to tinker with settings and possibly sacrifice some of the conveniences you’d expect from a modern smartphone. Nevertheless, for those who value their data privacy above all else, this might be a price worth paying.

For instance, when setting up your Graphene OS device, you’ll encounter several settings that require manual configuration. This includes enabling hardware random number generation (HRNG), using a custom kernel, and configuring the device’s boot sequence to prioritize security over convenience. While this may seem daunting at first, it’s actually quite straightforward once you’ve familiarized yourself with the Graphene OS ways.

As Snowden himself has pointed out, Graphene OS offers an excellent example of how security can be designed into a system from the ground up. Rather than relying on patches and updates to fix existing vulnerabilities, Graphene OS prioritizes secure development practices and rigorous testing to prevent exploitation in the first place.

Ultimately, the question remains: do we need to break the bank to ensure our mobile devices are secure? While expensive phones like Apple’s latest model may tout advanced security features, there are indeed more affordable and effective options available. It’s time to rethink our priorities as mobile users and consider what truly matters – data protection and privacy, or the latest gadgets and streaming capabilities?

As a cybersecurity professional, I’d like to emphasize that security is not just about the device itself but also about your behavior and awareness. Always be cautious when downloading apps, avoid suspicious links, and use robust random passwords (use a password vault). With these precautions in mind, even an older 2nd hand pixel phone can be a secure and reliable companion.

Graphene OS: https://grapheneos.org Interview with a Gaphene OS Developer (Gabe) : https://www.youtube.com/watch?v=WkQ_OCzuLNg