this post was submitted on 26 Jan 2026
176 points (92.3% liked)

Technology

79298 readers
3406 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
176
This New Android Smartphone Is For Everyone Who Misses the Blackberry (lifehacker.com)
submitted 9 hours ago by bdonvr@thelemmy.club to c/technology@lemmy.world
50 comments fedilink hide all child comments
 

cross-posted from: https://thelemmy.club/post/43094801

you are viewing a single comment's thread
view the rest of the comments
[–] jjlinux@lemmy.zip 21 points 9 hours ago (3 children)

Maybe they should reach out to the GrapheneOS team and see if there could be a partnership of some type there.

[–] bdonvr@thelemmy.club 4 points 4 hours ago* (last edited 4 hours ago) (1 children)

Unfortunately the GrapheneOS team said it doesn't meet their requirements. Their requirements are suuuuuuper specific which is why it's only on Pixel devices.

They have said that the bootloader can be unlocked, so some sort of ROM support is possible.

GrapheneOS complete requirements:

  • Support for using alternate operating systems including full hardware security functionality
  • Complete monthly Android Security Bulletin patches without any regular delays longer than a week for device support code (firmware, drivers and HALs)
  • At least 5 years of updates from launch for device support code with phones (Pixels now have 7) and 7 years with tablets
  • Device support code updated to new monthly, quarterly and yearly releases of AOSP within several months to provide new security improvements (Pixels receive these in the month they're released)
  • Linux 6.1, 6.6 or 6.12 Generic Kernel Image (GKI) support
  • Hardware accelerated virtualization usable by GrapheneOS (ideally pKVM to match Pixels but another usable implementation may be acceptable)
  • Hardware memory tagging (ARM MTE or equivalent)
  • Hardware-based coarse grained Control Flow Integrity (CFI) for baseline coverage where type-based CFI isn't used or can't be deployed (BTI/PAC, CET IBT or equivalent)
  • PXN, SMEP or equivalent
  • PAN, SMAP or equivalent
  • Isolated radios (cellular, Wi-Fi, Bluetooth, NFC, etc.), GPU, SSD, media encode / decode, image processor and other components
  • Support for A/B updates of both the firmware and OS images with automatic rollback if the initial boot fails one or more times
  • Verified boot with rollback protection for firmware
  • Verified boot with rollback protection for the OS (Android Verified Boot)
  • Verified boot key fingerprint for yellow boot state displayed with a secure hash (non-truncated SHA-256 or better)
  • StrongBox keystore provided by secure element
  • Hardware key attestation support for the StrongBox keystore
  • Attest key support for hardware key attestation to provide pinning support
  • Weaver disk encryption key derivation throttling provided by secure element
  • Insider attack resistance for updates to the secure element (Owner user authentication required before updates are accepted)
  • Inline disk encryption acceleration with wrapped key support
  • 64-bit-only device support code
  • Wi-Fi anonymity support including MAC address randomization, probe sequence number randomization and no other leaked identifiers
  • Support for disabling USB data and also USB as a whole at a hardware level in the USB controller
  • Reset attack mitigation for firmware-based boot modes such as fastboot mode zeroing memory left over from the OS and delaying opening up attack surface such as USB functionality until that's completed
  • Debugging features such as JTAG or serial debugging must be inaccessible while the device is locked
[–] jjlinux@lemmy.zip 1 points 4 hours ago (1 children)

I really hope GOS does find an OEM willing to throw the kitchen sink at this.

[–] artyom@piefed.social 1 points 1 hour ago

They already have. They won't say who it is but it's in the works.

[–] Goodlucksil@lemmy.dbzer0.com 8 points 7 hours ago

The hardware security measures graphene wants are very expensive. Plus, GOS wants quick android security patche

[–] weaponG@lemmy.world 5 points 6 hours ago (1 children)

Even LineageOS would be amazing.

[–] jjlinux@lemmy.zip 1 points 4 hours ago

Agreed