23:50 <bencoh> please tell me you don't really think the blackphone is a seriously "secured" phone

23:50 <Joerg-Neo900> think blackphone etc

21:11 <pigeons> In case you like hitting your head on a desk: Thoughts after a Month with Blackphone (2014) (droidsec.org) https://news.ycombinator.com/item?id=12367809

19:52 <DocScrutinizer05> no blackphone and no cryptophone can compete

16:52 <DocScrutinizer05> the result is: blackphone etc

16:39 <pigeons> i don't remember the blackphone architecture, does the modem share RAM with the main CPU?

16:36 <DocScrutinizer05> I heard runours they recently noticed that 'flaw' in their product and now aim for an audit of the modem firmware to somewhat ensure the modem doesn't introduce security issues into the blackphone. Alas they will fail epically with that, since... even *if* you were able to completely audit modem firmware (it's as complex as a complete full fledged linux desktop system), nobody could warrant that this audited modem firmware isn't getting

16:33 <DocScrutinizer05> for blackphone it's even pretty likely that they use a shared-RAM approach and thus are as bad as it gets regarding lack of separation between userland (aka linux) system and modem (aka rogue) system

15:54 <DocScrutinizer05> and as I said, all this sandboxing and monitoring is absolutely unique to Neo900 (for all we know) and can't be found even in allegedly 'secure' phones like blackphone

15:42 <DocScrutinizer05> our mantra is: you can't have a secure phone by simply using a allegedly secure OS (see e.g. blackphone), you need to start implementing security on a hw level, only then a secure software on top of that makes any sense

21:11 <pigeons> he must have a blackphone

20:37 <DocScrutinizer05> well, blackphone always been pretty half-assed approach

19:47 <pigeons> "blackphone" makers. Also please interpret this line for me, "The decision was a business decision and not related to any warrant for user data which we have not received."

18:02 <pigeons> someone in that link brought up neo900 and with no irony someone else replied that blackphone would fit the bill

21:38 <pigeons> there are lots of projects that are more marketing than technology. purism, blackphone, etc

23:41 <DocScrutinizer05> blackphone is... a joke

23:40 <Necrosporus> There was blackphone also

19:52 <bencoh> fun stuff regarding blackphone: http://www.extremetech.com/extreme/174817-blackphone-a-secure-encrypted-smartphone-for-the-post-snowden-era ;)

19:49 <ZetaR> haroonk_: You mean the Blackphone? IIRC, DocScrutinizer05 mentioned that they didn't even address this problem.

07:56 <DocScrutinizer05> yes, blackphone is fundamentally flawed on hw level

07:56 <jrc> I've read about blackphone entering this space but if memory serves they don't sandbox the baseband

19:25 <DocScrutinizer05> btw in that regard our device is way better even than dedicated security phones like blackphone, which has nice software to do encrypted phonecalls etc (our can do as well, when you install the software you like to use for this) but can NOT guarantee that an attacker exploiting the modem OTA has no access to the system and thus would take over the complete device and thus render all the nice security sw moot

20:19 <bencoh> DocScrutinizer05: yeah I had blackphone in mind, and we did check it :)

18:52 <DocScrutinizer05> (blackphone) Zimmerman (ZRTP) was one of the initiators iirc

18:48 <DocScrutinizer05> blackphone does pretty good secure communication when you watch it from outside (as in "what's the OTA data it sends?"). But it's not particularly better security on hw side than the average cheesy android smartphone it's actually based on

18:43 <user_> How did you guys check blackphone?

18:43 <DocScrutinizer05> bencoh: I know what you're talking about, I guess. We checked blackphone, didn't we?

01:00 <arossdotme> DocScrutinizerlol Even blackphone's modem is like your landlord.

22:06 <DocScrutinizer05> it's actually "landlord" vs "fish in fishbowl". Neo900 modem is like a fish in fish bowl. Even blackphone's modem is like your landlord. Not supposed to ever enter your flat without your consent, but you hardly can guarantee that

21:43 <DocScrutinizer05> while even allegedly secure phones like blackphone are using a CPU/SoC with integrateed modem nowadays (to save space and money), we are using a separate modem module (not yet unique, N900 e.g. does basically same) and - unlike any other phone every built - we monitor and control literally every single wire running to the modem

05:52 <DocScrutinizer05> for Blackphone oddds are it does _not_ have anything like this

05:51 <DocScrutinizer05> both Nokia and blackphone don't allow installation of arbitrary apps by default, only stuff signed on their particular repo with their particular cert

05:50 <DocScrutinizer05> blackphone provides some "secure" apps for doing ZRTP etc

05:49 <DocScrutinizer05> for now I consider even the N9 on par with Blackphone, regarding OS and hw design immanent "security"

05:46 <DocScrutinizer05> I'd love to stand corrected and see Blackphone doing a great job

05:33 <DocScrutinizer05> unless they show me a schamtics of the Blackphone, I don't buy the separation myth

05:28 <DocScrutinizer05> when (for simplicity) two processors (actually it's one) share the same RAM, then it doesn't help to claim "processor B has no API to change variables in processor A's address space" - which is basically what blackphone states here

04:53 <Oksana> About BlackPhone: Callas said that the baseband processor in the Blackphone, made by Nvidia, has no access to the memory and storage used by PrivatOS. “It’s completely segregated,” “we assume that it’s a hostile router in the way we developed PrivatOS,” http://arstechnica.com/security/2014/08/blackphone-goes-to-def-con-and-gets-hacked-sort-of/

22:53 <Oksana> I heard something about BlackPhone... Will send you a link, if I find it...

22:52 <DocScrutinizer05> I think yes, and even blackphone does for all I know

22:52 <Oksana> Okay, do all mobile phones (except BlackPhone, Pyra and Neo900) share RAM-CPU between Linux and Modem to this absurdly high level?

15:25 <DocScrutinizer05> haha, severe doubts about it http://www.heise.de/newsticker/meldung/Die-Tops-und-Flops-des-MWC-2015-2570443.html?hg=1&hgi=16&hgf=true (blackphone: allegedly "top")

13:23 <DocScrutinizer05> (blackphone) I'm not sure the default install/config allows installing android apps from those common appshops

13:15 <mvaenskae> i wonder how many blackphone users will just install their usual goto apps and thereby render the blackphone idea useless anyways :)

17:54 <Openbot> that cares about yourprivacy." so the visitor thinks and goes to blackphone dreamland instantly lol

17:48 <DocScrutinizer05> all those "color" phones, greenphone, blackphone, pinkphone... :-S our next few models will be UV-A, UV-B, X-RAY, GAMMA ;-P

17:46 <Openbot> I met a friend he said you know theres a cool new blackphone with bla bla i was like yeew

17:43 <DocScrutinizer05> but it comes without any OS preinstalled, so it's up to user to turn it into andoid or into replicant or into blackphone or into whatever user wants it to be

17:42 <DocScrutinizer05> it luckily is way better than blackphone android standard crap hardware#

17:41 <Openbot> Just had a lil debate and found he thought it was something like blackphone

17:41 <DocScrutinizer05> a combination of blackphone "OS" and Neo900 hardware would probably make for a really nice secure phone

17:39 <Openbot> Confused like its a secure privacy phone like blackphone na

17:39 <DocScrutinizer05> blackphone is a software solution based on pretty poor and vulnerable hardware. Neo900 is a hardware which allows user to install whatever they can make fit on that platform, even blackphone suite