My Keyoxide Idendity:
aspe:keyoxide.org:TJXAWXPMSAG6VPARJQRWNB2TPA
Their hardware requirements are pretty clear. Samsung is the only one with comparably secure devices, but they use nonstandard tools like Odin and lock down many security features to the stock OS only.
Other companies are supposedly not making anything as secure.
https://grapheneos.org/faq#future-devices
Also, only Google can really ship updates that quickly and fully, as Android is literally their OS. They are also a huge company, so yeah they have way more resources than a random other company you might prefer.
Example Fairphone, which has horrible update schedules
opportunistic TPM integration would be nice.
I.e. use the security chip of the device, if one is found. Otherwise use password.
OR use a Nitrokey etc, which can act as a secure device to store these keys too.
Take that, Windows. You dont need a builtin TPM if you can use a Nitrokey 3 with a secure element, externally.
Finally! Their deb was broken even on Ubuntu, and Appimages are no real option.
But the size is insane, Electron is really an issue.
Also, the app just works if your phone is in the same LAN, and requires an open port which is also randomized, so secure firewall configs are very problematic, as you need to open the port manually every time.
Yes, blocking mode and kill switch.
Hmm have to check that again.
I really like SimpleX on Android, it is a good and often way better Signal replacement.