Techly NewsGet the app

Get the latest tech news

Experimental release of GrapheneOS for Pixel 9a


Overview of GrapheneOS features differentiating it from the Android Open Source Project (AOSP).

This section doesn't list features like the standard app sandbox, verified boot, exploit mitigations (ASLR, SSP, Shadow Call Stack, Control Flow Integrity, etc. Connectivity checks Attestation key provisioning GNSS almanac downloads (PSDS) for Broadcom and Qualcomm (XTRA) Secure User Plane Location (SUPL) Network time Vanadium (Chromium) component updates Hardware memory tagging (MTE) enabled for the main allocator Type-based Control Flow Integrity (CFI) Strong stack protector Automatic zero-initialized variables Well-defined signed overflow Strict site isolation and sandboxed iframes JavaScript JIT disabled by default with per-site toggle via drop-down permission menu Dynamic code execution is blocked for processes without the JavaScript JIT enabled as an extension to the seccomp-bpf sandbox Native Android autofill implementation to avoid needing sandboxed Google Play for autofill support Native Android credential manager support for passkeys to avoid needing sandboxed Google Play for passkey support WebGPU disabled for attack surface reduction WebRTC IP handling policy toggle to control peer-to-peer WebRTC mode High performance content filtering engine using EasyList + EasyPrivacy with per-site toggle via drop-down permission menu More complete state partitioning without origin trial opt-out Standard Android 16 user agent reduction is enabled early for the WebView to replace the major OS version, device model and browser minor/build/patch version with standard placeholder values High entropy client hints are replaced with the standard placeholder values used in Chromium's reduced user agent for both the browser and WebView to close a loophole where Chromium is still sharing the major OS version, device model and browser minor/build/patch version with any server requesting it via client hints Battery API always shows the battery as charging and at 100% capacity Trivial subdomain hiding disabled Consistent browser behavior across users without usage of feature flags and seed-based trials Nearly all remote services disabled by default or removed.

Get the Android app

Or read this on r/technology

Read more on:

Photo of Pixel

Pixel

Photo of GrapheneOS

GrapheneOS

Photo of Pixel 9a

Pixel 9a

Related news:

News photo

The Pixel 9a literally just came out but you can already get it for FREE with this Verizon deal — no trade-in required!

News photo

Experimental release of GrapheneOS for Pixel 9a

News photo

News Weekly: Google lays off hundreds, Pixel 10 prices leak, Motorola teases its new Razr, and more

« Andrew Cuomo Used ChatGPT for His Housing Plan
Meta antitrust trial kicks off in federal court »