Slashdot Mirror
Are There Any Smartphones That Respect Privacy?
An anonymous reader writes "After many years I am finally considering entering the smartphone era. Within the mainstream, there seem to be four OS choices: Windows, Android, Blackberry, or iOS: Android comes out as clear winner to me. However, all of the choices in one way or another require sharing a lot of personal information in the Cloud run by their respective corporations. Let alone Blackberry's centralized mail servers; there is no way to have an Android smartphone working decently without sharing all of your contacts, calendar appointments, and other stuff with Google. While Android is less intrusive than iOS, the lack of privacy remains quite annoying no matter how comfortable it is to have your own calendar and contacts centralized. In 2011 is there any option, other than living in a cave, to keep one's own life private while enjoying the wonders of modern smartphone apps?"
And I'm serious. While not as versatile towards own-hosted solutions as the old Windows Mobiles, it's still light years beyond Android and iOS. You can easily use your own Exchange server to sync and share your contacts, calendar and other stuff, which gives you true privacy. It also doesn't leak data to Google like Android does, it doesn't have the malware problem that Android has and the phone itself is a full smart phone with an great UI (Windows Mobile somewhat started lacking in this in recent years).
The reason for this is simple too. Microsoft may be many things, but they have always respected privacy. In fact, they have never really cared about personal data the way Google does. All they want to do is sell you the software and be done with it. Google, on the other hand, gives you the software for free but then keeps tracking your every move. I rather choose the first one, but i guess it's everyone's own choice. I do value my privacy though.
The only time when you need contact with other servers is to download and install apps, which imo is a stupid decision fueled by iOS and Android doing it that way. Old Windows Mobiles always allowed you to install apps the way you wanted, the desktop Windows way. However, I guess that provides some extra security.
Nokia has also just unveiled Nokia Lumia 800, which looks really slick and has been praised by the people who have tested it. Personally I'm going to wait until it's released and read a few more user reviews, but I think that's going to be my next smart phone.
There is also Nokia's MeeGo-based linux phone, N9 which is really slick and has all the features you need, too. But support for that might be worse in the future, as Nokia is mostly going to do WP7 phones now.
Why does Android come out as a clear winner for you, and why do you think that iOS is intrusive?
OK, so you say you're concerned about the security of your list of contact phone numbers and addresses. Yet when you want to call the contact, you ask your cellular provider via the GSM network to establish the connection. When you email the contact you use the 4G network to access the internet, and send your email to them, secured only on the hop between your phone and your SMTP server, but otherwise probably being transmitted in cleartext. When you bring up their address in the map, you give Google the locations of every place you view. And every where you go, whether it be to a calendar appointment or just out for a stroll, the cell phone is broadcasting your identity and approximate location to anyone interested in such things.
I think distrusting Google wouldn't be first on the list of privacy actions to take.
Not having a cell phone would go a lot further protecting your privacy, but you said you don't want the cave option. Get a Kindle Fire (wi-fi only, only when you want it), root it, and add only GPL software you trust, including a SIP client. Carry a Sprint wi-fi hotspot, turning it on only on your terms. Or carry a dumb phone (Sony Ericsson makes one) then use Bluetooth to tether the smart device. Instead of the Kindle Fire, you could use an iPod touch.
You could even carry an iPhone. To the best of my knowledge, Apple isn't scraping my contact list. Yet. I think.
John
Wait a minute. I'm a manager, and I've been reading a lot of case studies and watching a lot of webcasts about The Cloud. Based on all of this glorious marketing literature, I, as a manager, have absolutely no reason to doubt the safety of any data put in The Cloud.
The case studies all use words like "secure", "MD5", "RSS feeds" and "encryption" to describe the security of The Cloud. I don't know about you, but that sounds damn secure to me! Some Clouds even use SSL and HTTP. That's rock solid in my book.
And don't forget that you have to use Web Services to access The Cloud. Nothing is more secure than SOA and Web Services, with the exception of perhaps SaaS. But I think that Cloud Services 2.0 will combine the tiers into an MVC-compliant stack that uses SaaS to increase the security and partitioning of the data.
My main concern isn't with the security of The Cloud, but rather with getting my Indian team to learn all about it so we can deploy some first-generation The Cloud applications and Web Services to provide the ultimate platform upon which we can layer our business intelligence and reporting, because there are still a few verticals that we need to leverage before we can move to The Cloud 2.0.
Any reason you could not just get an Android phone and then just say no, when it ask you for permission for your location data? It only ask once.
Then you just need not to add your google account, and you will be free of the cloud.
Google is an information vendor their goal is to give you a phone / phone OS so you use it, then spy on you to find out what you like and where you go, and sell that information to others to make a profit.
So if you're concerned about who is intrusive, then don't use Android.
-- Flame me and I will happily flame you back. Bring it!
just flash CM7 and don't flash gapps, use an alternative market to get your apps, was that so hard to find out? CM7 is fully usable without google propietary apps, you just have to make some compromises (no gmail app, no google navigation, no official market, etc..)
RIM solved this problem. If you don't want your data on somebody else's server, set up your own BES (Blackberry Enterprise Server) with YOUR security policies.
Taint cheap, but you gets what you pays for.......
The consumer blackberries connect to BESs operated by the carriers. My corporate owned one connects to OURS, and the company has all kinds of flexibility to impose policy, remote wipe, etc.
Red
I didn't have to create an iCloud account to use my iPhone. I don't sync my location, contacts, mail, etc. with iCloud. I back my phone up to my own computer. I struggle to see how this is more intrusive than Android, which required that I sync everything with Google. Granted, I *do* sync everything on my iPhone with Google, but that's another question entirely.
Do you really need reason for beer? Wingman Brewers
You can tell Android's built-in Sync to not touch your contacts, appointments, email & then use the generic (& built-in!) calender & email applications that do exactly the same things over standard protocols...
I have an HTC Inspire with ATT. I can take out the sim card and use google voice with wifi. You can also use a gps spoofer app with the sim card inserted and it will report your location as being where ever you want. Otherwise, the main problem is that when you buy a contract you are buying time on someone else's network. They have omniscience when they want it, basically.
if your life is such a big joke then why should I care?
In spite of that, email communication and web communication is encrypted/decrypted on the BlackBerry smartphone itself, so RIM (the company that does BlackBerry) can't snoop into your data contents even if they wanted to. That's why some authoritarian countries around the world couldn't quite understand - they demanded RIM hand over the secret keys to let them read any message contents, which they just assumed RIM must have, even though they don't. Similarly, with the riots in Britain earlier this year, the authorities complained that the rioters were co-ordinating using BlackBerry phones, and they couldn't intercept those communications. To me, that's a strong recommendation for a BlackBerry if you want security and privacy.
Atheism is a religion to the same extent that not collecting stamps is a hobby.
It is perfectly workable to plug in your old SIM with phone numbers stored on it and use them from an Android phone without ever setting up a Google account. It is also possible to add fully featured contacts and calendar appointments locally on your phone without sharing them with Google.
If by "working decently" you mean the phone should seamlessly sync with your other devices through the cloud, you have the option of setting up your own SyncML server, and most manufacturers also include MS Exchange ActiveSync as well.
Sure it is a dead OS, but it's got a few years of support (Four solid years if you believe Nokia and Accenture). You can get a brand new unlocked Symbian^3 smartphone for less than $400: http://www.amazon.com/Nokia-Touchscreen-Featuring-Navigation-Camera--U-S/dp/B003ZX7RL4/ The N8 has a great camera, better than almost any other smartphone out there, an FM receiver as well as transmitter, USB on the go, and a micro HDMI out port. You can install and run whatever apps you like. you can tether it out of the box as-is via USB or bluetooth. sure some third-party apps want to call home, but the phone warns you when they do, and it's easy to disallow/disable.
While I admit I haven't tried, it should be possible to run an Android phone without ever signing into Google - indeed without a Google account whatsoever. The email application support POP, IMAP or Exchange, the contacts can be synced with SyncML or Exchange (and a few other options I am sure), applications can be sideloaded, IM+ does a pretty good job with Jabber etc. Surely it would make it somewhat more complicated but I am quite sure it is possible.
In other words - Google offer a way for people to run the smart phone without any knowledge about servers and with an extremely simple setup (enter your google account once), but it is in no way forced upon you - so I think it's actually quite acceptable.
The problem is that most of the uneducated masses don't care about privacy and don't see a need for it. So they go for the number of Apps or GHz when purchasing a new mobile device, without caring that this device is a fully functional computer with all sorts of sensors that is connected to some sort of network 24/7!
There were a few attempts at true Linux mobile devices, but even the last two devices with potential (the Nokia N900 in 2009 and N9 this year) only got a lukewarm reception mostly due to crappy marketing and not enough people promoting truly open platforms that let users know what their devices are actually doing in the background.
The N9 is still up for graps. There is even an independent project called Mer being worked at that aims to be fully open, based on Meego, feel free to join if you have some coding skills.
Let alone Blackberry's centralized mail servers; there is no way to have an Android smartphone working decently without sharing all of your contacts, calendar appointments, and other stuff with Google.
You have got only partial information somewhere.
You can have pure Android smartphone, without any demands to share your privacy with Google. Period.
If you want to use Android market (market.android.com) then you need to activate your new phone first time to it. It does not mean you need to input your personal email address to it or bond your personal gmail to it. You only need to create a one for your Android market store profile.
You do not need to use other Google services at all.
- Not GMail for email, you can choose what ever just offers POP3/IMAP connection
- Not Google Calender, you can stick what ever just gives standard vcard sharing, even sync manually
- Not Google Contacts (GMail contacts), you can disallow the syncing contacts with Android profile account and keep them in phone only or in SIM card. You can even from contact book sync them with standard vcard to microSD and sync manually.
You don't either need youtube account or anything. Actually you don't even need a Android Market profile if you are willing to get your applications somewhere else than Android Market. Like Amazon store or any other third party who you can trust.
Android Market just makes it easy to install applications (via phone or any browser) to your phones and especially buy them (even that Google changed 24h return time to 15 minutes).
Corporations can at one step totally skip whole Android activation with Google. They can activate the phone to their own exchange environment (I could thing same thing would be possible to do with Linux servers).
So corporation IT department can manage the phone without Google knowing anything at all.
I have used GMail from the beginning when it was just in invitation mode.
I bought my first Android phone 9 months ago, it is a very cheap one (107€ with 2€/month for unlimited data speed and amount and the phone supports 7.2Mbits connection and nearly full speed (750-800KB/s) as hot-spot for computers with ping being 70-90 by avarage.
Before that I owned only a Nokia phones. Symbian before Symbian was terrible, I never used it for any things, even it was classified as smartphone (without touchscreen).
And now, I use Google services very much. Why? Because they integrate very well with the Android and I can really get many benefits from it.
If wanted, I could have kept contacts off from GMail or my calender off from there. But I don't have a home server what to keep online all the time or I don't want to start syncing contacts and other data with my own rented server.
If I would have home server, I would really use it for every thing what Android support.
Did you know that Microsoft has paid to at least one carrier in US to sell Android phones, on what every Google service is replaced with Microsoft own services and user can not install Google services back?
So customer is tied to Microsoft Bing search, Bing maps, Hotmail, Calender etc?
People believe that Android forces customer to Google. That simply ain't true. It is just the easiest and actually most secure way to use smartphone.
Google search .....
Picasa
Google Calender
Google Reader
Youtube
GMail
Google Docs
Google Maps
Google offers so many features and none of those need to even be used with your private contacts, emails, etc. You can just disable the sync or add a new offline account for those in phone.
When it comes to privacy, easiness and many other features. Android just is best, and not even Microsoft have nothing to offer in Windows Phone (7.5 yet... lets see what future shows us).
And even though it was launched in 2009, it offers a boatload of features that other phones don't even try to match: the Nokia N900.
-- Look to the Rose that blows about us--"Lo, Laughing," she says, "into the World I blow..."
Uhm... you do know a BES still connects through RIM's network and servers right?
We run BES Express for free....
http://us.blackberry.com/business/software/besx/
Install FDroid, K-9 Mail and Firefox (from the FDroid repositories of course). You can likely even use CyanogenMod without installing all the Android Marketplace if you want - I do this for my HP TouchPad. No need to sync anything with Google.
It's GNU/Linux dammit!
Yes, but it is encrypted from the BlackBerry to the BES. All RIM sees is the encrypted data.
Not necessarily expensive either.. BES Express is free, or you can go with MDaemon BlackBerry Edition..
Agreed. If you want absolute privacy, your own BES is the way to go.
And you can get BES Express for free (you lose some of management policies, but the core security stuff is there) though you'll need a mail/calendaring/contact server to hook it up to, which means (if you want to avoid Exchange) probably VMware's Zimbra.
--srj/mmv
Check them out at http://www.carrieriq.com/
Never trust a man wearing a coat and tie!
FIrst of all - RIM ("Blackberry") are not running "centralized mail servers". They only connect your smartphone with your IMAP mailbox (say: your existing email account) and do the HTTP-push and wireless part. Their core business was (and probably still is) some sort of middleware between companies' email and calendar servers and employees PDAs and phones. Secondarily: Any smartphone that provides a regular IMAP client or lets you install one will perfectly meet your needs. Almost any smartphone will do. You'll just connect to your actual mailbox via SMTP through the internet, as you do now. No Google involved (unless you are using Gmail). My girlfriends stone-aged Motorola can do this out-of-the-box and so does my Blackberry (I use a BB, but not RIMs data service, just my wireless network provider's regular data plan)
Oh, the beautiful gloss of greality!
Came here expecting to see a link to this video of why RMS doesn't use cell phones: http://www.youtube.com/watch?v=WGkNiRFwmOg. Left dissatisfied.
for the most part. I use an iPhone, in part because the UI works for me, in part because Apple's "walled garden", while limiting, insulates me from an increasing range of malware that I would have to deal with on Android. iOS privacy issues are so far acceptable to me. Android is too open to malware, and too beholden to Google, whose business model depends on your surrendering all your personal information for their use. Blackberry seems like a sunset system, not much future to it. As for Windows, I have had so much grief with MS products over the years that I would never use one if there were any alternative. So for me, iPhone is an imperfect approximation to my ideal. YMMV.
I would also suggest using webDAV at home or setup remotely, and configure your calendar, contacts, bookmarks and other file-syncing that way (of course encrypting everything before it hits the wire).
Additionally, in September RMS wrote a great piece on Android that might be of interest to you. Also, this little nugget from Firefox developers doing a pseudo-Q/A on Reddit (i know, i'm sorry) regarding your privacy in the browser might also be of concern to you.
All the software (including drivers) is FOSS. Of course the GSM chip still tracks your rough location in order to work.
I've just got a SGSII and I was shocked when I realized that, you can not log out of gmail.
How can that be? Locking the screen is the safest way to keep your gmail account private in an android device.
That's why people like me loved the Nokia N900. I remember how my forsaken OS phone let me do whatever I wanted.
Android is a Google product and Google's main business is selling advertising. Android just another channel for ad traffic for Google and so Google does not consider android users to be their customers. Rather, users of Google's services are the "product" sold to their real customers namely, advertisers.
Given this nature of Google's "free" services, explain to me how Google is interested in preserving your privacy and not intruding on it?
Jesus was a compassionate social conservative who called individuals to sin no more.
RTFA. That is only on BIS and BBM. BES is encrypted with the client's own key.
I once took an excursion to Reddit, and later HN. Unlimited up/down voting sucks when dealing with a hive-mind.
Not really sure what kind of privacy invasions you're trying to "run away" from...
But I find that the Android support of multiple accounts comes in pretty handy. I have one gmail address for personal interactions with people and holds my address book, then I have one (or more) "spam" accounts that I use for all of the social network accounts, logins, etc., for just about any interaction with any online business or service that wants an email address for something. Notifications are only enabled on the personal account, and it tends to be rather quiet (yay for having no friends!).
Team that up with multiple google voice options, and I don't even have to give out my "real" phone number most of the time for texts. And the voicemail transcriptions make it easier to wade through incoming stuff. But other than occasional calls from the Red Cross, I barely ever get any kind of telemarketing or "survey" calls to my cellphone number even though I've been handing it out for various things for over a decade.
So of course Google could link all my various accounts together to get a more complete profile of me, but not really sure what they'd do with it. All of the marketing gets directed at the spam account. They likely get more advertising bucks if they can say they're selling access to multiple personas (even if they all lead back to me) anyway, so it's probably win/win.
Last I checked, Cyanogenmod was made by Cyanogen and his crew. Cyanogen is employed by Samsung. All of them are well known in multiple places. They are most certainly not "anonymous hackers", you tool.
.... because running a software made by "anonymous hackers" is much more safe than original OEM version.
Except a) the hackers aren't anonymous; the guy is well known and has just taken up a job with a phone manufacturer. b) The people who write for the big companies actually are anonymous and often don't even work directly for the big companies c) most of the privacy violations we see are motivated by commercial interests which is before we even get to d) the thing about Cygenomod is that the source code is out there
c) that I mentioned above is the most important thing though. According to reviews, Windows Phone has no native contacts data store. This essentially means that you end up using Facebook (or linkedin etc) for storing data. This is a simple commercial decision which compromises the user's security in order to push forward Microsoft's partnership with Facebook and against Google+. It's very key to understand, at this point, that Microsoft's investment in Skype and Facebook tells us that the company's entire attitude to personal computing and privacy has changed. They will now do whatever they can to make up for the lost years when they allowed their own users to do more or less as they pleased.
Simply put, to have any chance of privacy at all we need something which has at most limited influence from commercial develpers and must have no influence from Microsoft.
=~ s,(.*),<sarcasm>$1</sarcasm>,g if any_point_you_wish();
When you first login to the Android phone, you have the option to turn off sync for any services you don't want to sync with the cloud. You might leave on mail, but disable contacts, calender and gallery. This way, none of that data will be sent to Google, our pulled down from Google.
Also, remember that a LOT of people use Google - 200m Android , 550k new daily - so unless there is a very specific need for Google to look at your data, they won't. You can assume that to a fairly high degree your secrets will be safe.
Have a Linux for smartphones?
Honestly, with the number of android phone cracked wide open why is there NO linux on them? OpenMoko was 90% there and all source available. Why dont we even have some "Linux for Droid" or other projects out there?
Honestly, a "Hardened" smartphone is something that many paranoid geeks would be all over, and the "uber 1337 hax0r's would wet themselves over such a thing.
Do not look at laser with remaining good eye.
Simply put, to have any chance of privacy at all we need something which has at most limited influence from commercial develpers and must have no influence from Microsoft.
In other words, the best solution for privacy might be to use a cheapie burner phone for making calls, and use a proper computer for doing anything online. Yes, this probably sounds like I'm being a troglodyte, but given the current state of the technology it might still be the better solution than any kind of smartphone
- no matter much we might wish otherwise.
I know this is hard to believe for most of you, but outside of your Moms' basements, the majority of users see these smartphone features and cloud services as a feature, not a security flaw.
More importantly, there is continuum of convenience and security. Most of the world thinks you lot here err on the side of security, which compromises user friendliness (hello, ever try to get an entire office to install their certs correctly?) in favor of security. Most users err on the side of convenience, at the risk of security. The correct choice depends on each user's individual needs and situation, and these one-size-fits-all corporate IT policies you all love around here aren't always very good for Average Joe.
They already have. So have several other organizations.
In Google's case, they sell access to your eyeballs. That is, they target advertising in their search engine (at least) towards your profile. It's fairly benign, all you have to worry about is someone more evil getting into their data.
In the case of the other organizations profiling you, well, what they are doing is selling your profile.
True, that. But it's not private in the sense that some people value. It's just reasonably safe from the viewpoint of identity theft protection and the like. Which is good enough if you trust your government at all.