5,597,762 Members 36,269 Now Online
XDA Developers Android and Mobile Development Forum

Blackphone opinions???

Tip us?
 
d1rX
Old
#11  
Member
Thanks Meter 5
Posts: 65
Join Date: Aug 2012
The problem is Android itself. Thanks to Xprivacy, it's a lot easier to control what leaks out of your device. Personally I'd rather see more encryption mechanisms than this. FFOS seems to be on the right path
 
SaintCity86
Old
#12  
SaintCity86's Avatar
Senior Member
Thanks Meter 132
Posts: 575
Join Date: Oct 2013
There Is nothing you can do to stop identity theft.

Nothing.

And there is nothing you can do to do the government from tapping your lines.

You want a safer form of communicating, send Voice recordings over text.

That's an entirety separate warrant, and harder to get. Other than that. It's hopeless

You've Just Been Tapatold ♧♢dbombROMv3.4♤♡

My Theme ( Taking Requests )
http://forum.xda-developers.com/show....php?t=2658527
 
repat
Old
#13  
Junior Member
Thanks Meter 0
Posts: 10
Join Date: Jul 2010
Location: Hamburg

 
DONATE TO ME
Quote:
Originally Posted by d1rX View Post
FFOS seems to be on the right path
I think you mean FOSS[1] = Free and Open Source Software. Anyway, I fully agree, in fact, that is the ONLY way. Closed source encryption programs can't be 100% trusted by definition. There might be security flaws, intentional or not.

Anyway. the NSA has backdoors to every operating system[2], so if you're really a target, they get you. Also, there are more than enough security holes in the layers under the operating system[3].

I think what these phones are supposed to do is bring end-to-end encryption for e.g. industry users so they don't get spied on. The NSA and the US government can get their hands on encryption keys for servers like in Lavabits case[4]. But this is the transport encryption. The data is, if not otherwise secured, available in plain text on the servers of providers. This also means, the officials can decrypt ANY data that comes in, not just the one of actual targets.

Now, end-to-end encryption makes sure even the provider can't see your data in plain text because you encrypt and decrypt it on your device. What Blackphone does is, it uses the apps from Silent Circle, a closed source encryption programm for VoIP and messages. Although the owner of that company is the well trusted cryptographer Phil Zimmerman, one can never be sure.

Quote:
That's a good point. how a non blackphone device is gonna decipher the encryption? how is it going to get the key? How can a non blackphone device even a establish the same "secure" connection?
You can install and use Silent Circle on any(ok, a lot of) phone(s). Just make sure you don't have additional malicious software installed. Any yes, it costs $100/year or so. And you get a subscription for SpiderOak, sort of a Dropbox but they encrypt the data before uploading. Any you get a better overview over what app uses what permissions. A few extra tweaks basically.

Alternative: Android Phone with CyanogenMod/Replica. TextSecure for messages, RedPhone for VoiP and owncloud for files. Way cheaper too, and open source, also made by well respected cryptographers like Moxie Marlinspike[5]

[1] de.wikipedia.org/wiki/Free/Libre_Open_Source_Software
[2] zerohedge.com/news/2013-09-08/nsa-has-full-back-door-access-iphone-blackberry-and-android-smartphones-documents-re"]backdoors to every operating system
[3] forum.xda-developers.com/showthread.php?t=2530044
[4] techdirt.com/articles/20131002/17443624734/lavabit-tried-giving-feds-its-ssl-key-11-pages-4-point-type-feds-complained-that-it-was-illegible.shtml
[5] thoughtcrime.org
 
Autocad_man
Old
#14  
Junior Member
Thanks Meter 0
Posts: 3
Join Date: Mar 2014
if they want to spy on us they can ... that's it...
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes


XDA PORTAL POSTS

Polish Your Custom Themes with Theme Debugger

Creating a custom Android theme from scratch can be quite the laborious task. In addition to … more

Clean Up Your Logcat Code with Lib Cleaner

Some of you may think that writing code is the hardest part of development. It’s not, as the … more

Tweak Your Xperia Device’s Camera App Yourself

We’ve come to expect nearly perfect cameraperformancein our modern day … more