Follow

NitroPhone - Most Secure on the Planet - The NitroPhone combines security, privacy and ease of use with modern hardware. nitrokey.com/news/2021/nitroph

@nitrokey Android 😭 I understand, but disappointing. And that means no #mainline support...

@bart @nitrokey Indeed! #mainline would be the way forward! Android means also a list of closed source blobs to make the hardware work.

@dylanvanassche @bart @nitrokey it would be oh so feasible to ship a device with sdm845 and mainline at this point, a few devs working full time could get it usable in a few months

@bart @nitrokey what if android with mainline kernel, oh wait...

@bart

#foss is not sufficient for security, but it is necessary for security.

Mobile phones with GrapheneOS pre-installed, ready to use by non-tech savvy people, is great news.

However, IMO, foss is necessary for mobile phones to be as secure as possible.

@nitrokey

@nitrokey If I understand it correctly, there is no substantial difference to a non-nitro Pixel4a with #GrapheneOS right?

@ck Optional: Physical removal of all microphones. A headset can be connected for voice communication.

@bkos @ck We are looking into that right now. Why would you want this?

@nitrokey I think the speaker can also be used as a microphone.

@nitrokey If I were you, I'd disconnect speakers and microphones from the mainboard and use a wireless protocol (e.g. BT, but closed) for data transfer. Have a seperate module control and distribute microphone and speakers, potentially other sensors.

@nitrokey I like the idea. It's probably hard to do, but a hardware kill switch would be awesome.

@nitrokey Kann man nur empfehlen :) Die Kombi von Pixel 4a + GrapheneOS ist absolut alltagstauglich, "sicher" und nutzerfreundlich.

"Optional: Physical removal of all microphones. A headset can be connected for voice communication."

I'm impressed.

@nitrokey

@nitrokey euer #nitrophone sieht gut aus.

Verstehe eure Wahl für das Google Pixel 4a.

Würede mich freuen wen Ihr an Handy Produzenten wie #shiftphones oder #fairphone denken könntet naja vielleicht für Version #nitrophone2

@Sliven @nitrokey
Deren Hardware eignet sich nicht für Sicherheit und/ oder Datenschutz.

@Sliven @nitrokey
Nein. Sowas braucht viel Geld und neben manpower auch noch das nötige Wissen ind Interesse.
Einzig Apple (iPhone) und Google (Pixel Handy) bieten sowas.

@Utgardloki @nitrokey

Das muss ich dann mal glauben das mit der Hardware die von den verwendet wird nicht der gleiche Sicherheit level erreicht werden kann.

Aber die Konzept dieser Firmen sind nun mal sehr überzeugent

@nitrokey 'Most secure android on the planet' is a big claim.. Unless there is some evidence to back it up...

@nitrokey The price though. That's double the amount of a normal new Pixel 4a.

@nitrokey

How to do you enable VoLTE and SMS over LTE and WiFi calling? Last time I checked, those are proprietary libraries that don't exist in stock AOSP.

Do you use the proprietary vendor partition?

Does the Pixel 4 even boot without a proprietary library? I know the Pixel 3a doesn't.

I ask because your page says "100% open source"

@nitrokey "100% Open Source and Attestation" does this mean that all drivers are open source and could be put into the mainline linux kernel so that if I want I could build a linux mobile on this even though you ship it with GrapheneOS?
@bart

@dukethereal @bart open source refers to the actual OS but there are proprietary driver blobs.

@nitrokey @dukethereal @bart

So wait, what about VoLTE, SMS over LTE, and WiFi calling? Those aren't drivers. Are those open sourced?

If you have an open sourced WiFi calling library, Please link it! It would be a great reference to port over to the Pinephone.

@nitrokey @dukethereal @bart

Is there anything else that is not open source?

It makes me really uneasy to see your website say "100% open source" without these caveats, can you enumerate these caveats on your website?

@nitrokey

What would be the advantage of getting a Nitro phone vs buying a Pixel 4a off of Google's website and slapping GrapheneOS on it ?

@PublicNuisance We offer a peace-of-mind solution for people who don't have the time or skills to install it themselves. Plus we can remove the microphone, if desired.

@nitrokey
Awesome! Great Initiative! The people need more alternatives to surveillance software in their phones.

@nitrokey question, is there a way to manage @fdroidorg installation of apps and signing of the apks in question?

Asking for a friend.

@rysiek @fdroidorg You can easily use f-droid as an app store. Do you want additional signing, what exactly?

@nitrokey
Props and much success to offering a commercially available non-Goopple phone! DIY flashing is daunting for many.

I look forward to future Android solutions on more open HW as well as Linux phone maturity.

@nitrokey
Ihr habt das sicher mit Daniel Micay abgesprochen?

@nitrokey Android? I suppose it’s better than nothing but a little disappointing when you could be contributing to the linux phone ecosystem instead…

@staticvoidmaine Our first objective is to provide our customers a secure and professional phone. Linux phones are not ready yet. However we are watching the space and might offer a Linux phone in the future.

@k3vk4 Not sure about GSMK but NitroPhone has protection against over-the-air exploits by isolating the baseband radio processor using IOMMU and optional LTE-only mode to significantly reduce cellular radio attack surface.

Sign in to participate in the conversation
Mastodon

nitrokey.com is one server in the network