Ars Takes an Early Look At the Privacy-Centric Blackphone 67
Ars Technica has spent some time with pre-production (but very nearly final) samples of the Blackphone, from Geeksphone and Silent Circle. They give it generally high marks; the hardware is mostly solid but not cutting edge, but the software it comes with distinguishes it from run-of-the-mill Android phones. Though it's based on Android, the PrivOS system in these phone offers fine grained permissions, and other software included with the phone makes it more secure both if someone has physical access to the phone (by encrypting files, among other things) and if communications between this phone and another are being eavesdropped on. A small taste: At first start up, Blackphone’s configuration wizard walks through getting the phone configured and secured. After picking a language and setting a password or PIN to unlock the phone itself, the wizard presents the option of encrypting the phone’s stored data with another password. If you decline to encrypt the phone’s mini-SD storage during setup, you’ll get the opportunity later (and in the release candidate version of the PrivOS we used, the phone continued to remind me about that opportunity each time I logged into it until I did).
PrivOS’ main innovation is its Security Center, an interface that allows the user to explicitly control just what bits of hardware functionality and data each application on the phone has access to. It even provides control over the system-level applications—you can, if you wish for some reason, turn off the Camera app’s access to the camera hardware and turn off the Browser app’s access to networks.
I say XPrivacy (Score:5, Informative)
"PrivOS’ main innovation is its Security Center, an interface that allows the user to explicitly control just what bits of hardware functionality and data each application on the phone has access to"
Those of us with a normal but rooted Android can do these things already with XPrivacy, an XPosed module. Fine grained control per system call, also for system apps (yes, that includes keeping pre-installed Facebook out of my address book and gps data). And I can choose to simply refuse, or tell it the address book is empty and I'm on the south pole.
Re:Apps which require location? (Score:5, Informative)
Re:Apps which require location? (Score:4, Informative)
The mic is not the main concern. Where I live, it is mandated by law that you have to show national ID card when you purchase any phone, and have the phone no and IMEI numbers associated with you.
Meaning they are automatically tracking everybody, and indeed the police cameras routinely use cell phone location information (among others) to narrow down the face recognition hits. (Yes, this system exists and is publicly announced).
It is harder to listen in to the mic on everyone all the time.
Re:Apps which require location? (Score:4, Informative)
2 towers are enough.
With the right software, 2 antennae on one tower are enough.