pull down to refresh

Okay, so you wanna say that we need to look beyond graphene OS as well? We need to find something more private to remain in control?
No. The documentation is saying GrapheneOS is the only OS sufficient to protect you from this in the long-term because they can't exploit the device, only extract data if the owner of the device gives the password away.
If you have a higher threat model, then use a stronger passphrase that cannot be brute forced (which prevents you trusting the secure element) and reduce the auto reboot time.
reply