Andrew McGlashan via luv-talk wrote:
On 24/1/19 11:44 am, Trent W. Buck via luv-talk wrote:
Rohan McLeod via luv-talk wrote:
Interested to hear [about] Librem_5 mobile phone; which claims to be 'crowd-sourced' more secure hardware running more secure OS ; ("PureOS" seems to be a Debian variant) https://puri.sm/products/librem-5/
I have been watching on the sidelines while some friends considered them. IIUC the short version is:
1. you can't build a smartphone that's safe for paranoid people.
I think the same for ANY hardware these days.....
Further reading: https://libreboot.org/faq.html#will-the-purism-laptops-be-supported https://libreboot.org/faq.html#intel https://libreboot.org/faq.html#amd https://libreboot.org/faq.html#what-about-arm The last two links don't say, but ARM TrustZone is mandatory in AArch64 (ARMv8/ARM64) systems, and present on some ARMv7 systems. TrustZone is basically ARM's equivalent of Intel Management Engine. Likewise AMD systems have an equivalent of IME, which is an ARM core, so ironically there is a backdoor in their backdoor. In a smartphone, the OS on the radio (the "phone" in "smartphone") has backdoors into e.g. all RAM, *as well as* the same as TrustZone backdoors as regular computers have.