Fairphone sales jump 83% as the memory crunch makes longevity look better than ever.
  • ozymandias117@lemmy.worldEnglish
    9·
    4 hours ago

    Graphene modifies AOSP for much more security.

    E.g.

    • you can disable USB data at a hardware level
    • Receives Kernel updates even faster than Google’s phones
    • uses a different memory allocator, hardened_malloc
    • changes the way zygote launches apps, so ASLR actually works
    • doesn’t allow apps to ptrace themselves
    • disables JIT per-app
    • disable network access per-app

    I dont think e/OS is as security oriented, more privacy oriented

    • atcorebcor@sh.itjust.worksEnglish
      3·
      4 hours ago

      Thanks for sharing. For someone who is not so well versed in these technicalities, what does that mean for the user? That you’re more susceptible to fraud and hacking and malware?

      • LedgeDrop@lemmy.zipEnglish
        4·
        3 hours ago

        From a user’s perspective, when you install an app, you can:

        1. Determine if that app is allowed to access the internet.
        2. If it needs access to your contacts, you can share which of your contacts, it can see (or none at all)
        3. If it needs access to your files, you can determine which files/photos/music it sees (or none at all, but the application still believes it has access to everything)

        There are a bunch of other, security features it provides, but from a “normal user” experience, the ability to take control of your data is probably one of the most impactful.

        It is possible to do similar things with other CFW, but AFAIK, graphene is the only one to cleanly integrate it as a polished feature of the ROM.

        edit: fix formatting

          • zod000@lemmy.dbzer0.comEnglish
            3·
            3 hours ago

            You would choose it for security hardening in general. E.g. it is harder for malware to infect, harder for unauthorized parties to gain access to data when the phone is locked, etc.