The GrapheneOS mobile operating system based on Android which focuses more on security and privacy features is now official.
The former lead developer of the CopperheadOS that had a fall-out last year, Daniel Micay, developed his own open-source project called Android Hardening Project which was later renamed to the GrapheneOS.
“The goal is not making devices with poor security slightly more secure, and choosing the best devices to officially support is an important aspect of it.” – Daniel Micay
This Android-based operating system is currently a custom ROM that can be installed to limited devices such as the Google Pixel 2 and Pixel 3 with unlocked bootloaders for now. Based on its Github repository, some of the OS features the following:
- Security-hardened memory allocator – “It has integration into Android’s Bionic libc and can be used externally with musl and glibc as a dynamic library for use on other Linux-based platforms.”
- Patches for the Chromium web browser
- Attestation server – ” It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.”
- Auditor app – “Hardware-based attestation app for select Android devices. It can do either local verification with another Android device via QR code or scheduled server-based verification.”
The newly created @GrapheneOS handle will be used for official project announcements. I'll continue to use this personal account to talk about GrapheneOS development work and security research. I'll be retweeting all the announcements here, so it'll remain a subset of this feed.
— DanielMicay (@DanielMicay) April 1, 2019