Slashdot Mirror

← Back to Stories (view on slashdot.org)

Phil Zimmermann's 'Spy-Proof' Mobile Phone In Demand

Posted by Soulskill on from the protecting-against-all-but-the-dumbest-users dept.

An anonymous reader writes "BlackPhone was designed by Phil Zimmermann (inventor of PGP). The 4.7" display phone features a 2 GHz NVIDIA Tegra 4i ARM Cortex-A9 quad-core processor with 60 GPU cores, 1GB RAM and 16GB storage [more specs]. The OS is a customized version of Android called PrivatOS which offers encrypted calls, texts and emails that can't be unscrambled even by spy agencies. It also offers built-in resistance against malicious software which will be most welcomed for users worried about free Apps that are becoming increasingly invasive, if not pure data collection spyware for unknown 3rd parties. It's coming out this June, and many Fortune 50 companies have already ordered the phone to protect against industrial espionage."

107 comments

  1. And the modem firmware? by Anonymous Coward · · Score: 1

    Does he have Qualcomm on board or what?

    1. Re: And the modem firmware? by halo1982 · · Score: 1

      Why would he need Qualcomm when the phone uses an nVidia baseband?

    2. Re: And the modem firmware? by Phreakiture · · Score: 1

      Because Qualcomm owns the IP on the baseband hardware for CDMA.

      --
      www.wavefront-av.com
  2. open source? by Anonymous Coward · · Score: 0

    Is it open source? Including the firmware of the Baseband processor?

    1. Re:open source? by Aaden42 · · Score: 5, Interesting

      It doesn’t (necessarily) need to be, though it would be nice. If the Android-level interface to the baseband is sufficiently limited, and if all “secure mode” operations (encryption) are handled purely in Android and passed off as a ciphertext stream through the baseband, a subverted baseband would have limited ability to cause issues.

      Problems for an untrusted baseband are:
      1) If the OS will (or can be forced to) accept any type of control from the baseband (rather than exclusively the other way around), the baseband can take over the “secure” OS.
      2) The baseband can leak private information passed through it to a third party.

      Note that as a special case of #1, audio stream communication between baseband and OS is often implemented as some variety DMA or shared memory. Care would be required to ensure the baseband was incapable of reading or writing any portion of system memory other than what was explicitly setup by the OS for DMA. A hardware MMU or even physically separate DRAM circuitry could ensure this.

      So long as the baseband has no avenue for exerting control over the OS, the OS can’t be tainted by a subverted baseband. If all information passed through the baseband in indistinguishable from entropy, the baseband funneling it off somewhere else has limited value absent some other attack on the crypto (including $5 wrench).

      The last remaining attacks would be location leaks (which can be carried out against even an untainted baseband with CellCo assistance anyway) and the possibility of injecting forged traffic that might trick the user into doing something insecure. Well-designed UI should ensure that cryptographically authenticated communications are always distinguishable from untrusted.

      Not saying having a fully open baseband wouldn’t be a really nice thing, but there are well established and sufficiently secure ways for sandboxing an untrusted baseband within an otherwise secure design.

    2. Re:open source? by currently_awake · · Score: 2

      What would be nice is if ALL external communications was on a separate processor. That way a security breach in your OS won't let the NSA intercept your data, and a security breach in your baseband won't let an attacker access your data/camera/microphone. The biggest issue is key handling/exchange. For you to talk with another phone you must share a key. How exactly do they manage that?

    3. Re:open source? by ameline · · Score: 2

      I think any designer of a "secure" phone needs to assume that the baseband is running hostile software.

      If the baseband has write access to application cpu ram, you're screwed.

      There needs to be uncompromised hardware enforced protection to ensure the baseband cannot write to application ram or to the flash memory of the application processor. I'd be very suspicious of DMA capabilities under control of the baseband unit.

      I'm not saying it's impossible to make a secure phone, but you as a creator of such should assume that every byte of code not under your control is out to get you. (including closed source graphics drivers).

      I'd also be nervous of the toolchain/compiler. That classic Thompson compiler attack (http://cm.bell-labs.com/who/ken/trust.html) is a worry.

      --
      Ian Ameline
    4. Re:open source? by Immerman · · Score: 3, Insightful

      >For you to talk with another phone you must share a key. How exactly do they manage that?

      Well if they both offer a rear-facing camera for video chat you could point the screens at each other for a moderately high bandwidth QR code based video stream. A few dozen bytes a frame (Version 3 QR code = 50 characters@5.5bits), times maybe 10 frames per second should be crude enough and slow enough to provide reliable data link, and it would be fast enough to communicate a 2048-bit key in under a second (2.75kbps)

      --
      --- Most topics have many sides worth arguing, allow me to take one opposite you.
    5. Re:open source? by Immerman · · Score: 2

      Indeed. Perhaps it could be designed so that the baseband communicates with all the normal DMA tricks to a minimalist flipphone-grade CPU+ram, which is then internally networked to a separate, trustworthy CPU/RAM/Flash - essentially making for two phones in one. As an added bonus standby power consumption could be potentially much lower - the second computer could be powered down completely except when manually activated or woken by the power-sipping flip-phone core.

      --
      --- Most topics have many sides worth arguing, allow me to take one opposite you.
    6. Re:open source? by AmiMoJo · · Score: 1

      You know Zimmerman invented the first public key cryptography software available to the general public, right? You simply send your public key, and it doesn't matter if the NSA/GCHQ intercepts it because all they can do is send you messages with it. They can't even spoof the person you are trying to communicate with because they need that person's private key to do so, and they only sent their public one.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    7. Re:open source? by Sloppy · · Score: 1

      If all the I/O is subverted, then you better make sure you really sent your key, though.

      Crazy sci-fi dystopian future scenario is that Alice's software decides to send her key as qrcodes but then actually displays Eve's key's qrcodes but also sends Alice's public key over covert channel. Then the Bob's software, wishing to display a fingerprint for its new key (Eve's) on screen, does that. Except its subverted I/O shows Alice's fingerprint instead. Bob reads the fingerprint out loud and Alice says "Yep, that's mine" (because it is) in spite of the fact that Alice really has the wrong key. Later, Eve MitMs everything Bob and Alice say to each other.

      Sounds like a lot of work and requires her subverted subsystems to be quite powerful. (It has to understand the intent of everything that goes up on a screen in real time, and do replacements.) That's ridiculous and there's no way it'll happen before 2114. *sigh* That probably means someone is already doing it successfully. ;-)

      --
      As copyright owner of this comment, I authorize everyone to defeat any technological measure which limits access to it.
  3. Link is broken by Anonymous Coward · · Score: 0

    The UK Yahoo news link is Broken in post.

  4. Limited market by wcrowe · · Score: 1

    I can see how this would work for blackphone-to-blackphone communication. What about people who call me or text me who don't have a blackphone? Those calls and texts are not going to be encrypted.

    I think the market for this thing will be limited, at least for the immediate future.

    --
    Proverbs 21:19
    1. Re:Limited market by Anonymous Coward · · Score: 1

      Of course it'll be limited. This sort of thing only has appeal to secretive companies, spies, criminals, terrorists, and paranoid nitwits like we often see here who have no reason to be spied on, but hallucinate danger. Most of us have no need for something like this, and a more open product is better for us.

    2. Re:Limited market by Charliemopps · · Score: 3, Informative

      It wont work.

      I use textsecure: https://play.google.com/store/...
      and redphone: https://play.google.com/store/...

      which encrypt text and calls to other people who use it. Which includes my wife... because I installed it for her... and that's about it. My paranoid friends that might use such things wont even get a smartphone so... yea...

      anyways, both applications are pretty good. I'm with Verizon and they have a TERRIBLE messaging app that they replaced the standard android app with. It literally crashes my phone it's so bad. So I replaced it with this. The only annoying bit is having to enter your password if you reboot the phone. Textsecure even sends the texts via the internet rather than using the cellular network to save you messages if the other users got it as well.

    3. Re:Limited market by geekoid · · Score: 3, Insightful

      Of course, what is the most used pieces of informaiton gathered from a phone? location and history of location.

      --
      The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect
    4. Re:Limited market by Anonymous Coward · · Score: 0

      *Everyone* has a need for this. It should be standard practice to utilize technology to support privacy.

    5. Re:Limited market by mlts · · Score: 1

      First thing one should do with almost all Android devices (GPE devices are a cautious exception) is to re-ROM them. I've not really been impressed with Verizon's text app myself, so I prefer a replacement.

      In any case, having the ability to encrypt phone and SMS conversations in an app, completely separate and independent from the OS is a boon. An eavesdropper would have to go from being passive to actively interacting with the apps or actively reading/scanning memory for keys to upload.

      With newer versions of Android demanding a password on reboot to decrypt /data, the time it takes to type in a second password isn't that much, assuming the ROM one is using is stable enough not to require frequent power cycles.

      All and all, we need more of this stuff. It would be nice to have programs PGP/gpg compatible and some standard so all apps use one's private key (similar to client certificates, but not using the TLS/SSL mechanism, but using PGP's WoT.)

    6. Re:Limited market by Anonymous Coward · · Score: 1

      Of course that is only as secure as the user of the phone allows it to be. Once malware is injected using one of many vulnerabilities/exploits, from browsing the web, email, apps, whatever, that "secure" app will be compromised.
      The blackphone does not have this problem.

    7. Re:Limited market by Anonymous Coward · · Score: 0

      Textsecure even sends the texts via the internet rather than using the cellular network to save you messages if the other users got it as well.

      What does this mean?

    8. Re:Limited market by Anonymous Coward · · Score: 0

      just use Lockify for secure text and email.

      https://chrome.google.com/webstore/detail/lockify/aiigoloogeminempipceaikpnaimbekd?hl=en-US

    9. Re:Limited market by Anonymous Coward · · Score: 0

      > Once malware is injected using one of many vulnerabilities/exploits... that "secure" app will be compromised.

      You don't know how Android works.

      Each installed Android app is run as a separate user.
      App permissions are handled by controlling which groups each user belongs to.

      Barring any sort of Linux privilege escalation bug, the kernel provides very robust program isolation.

    10. Re:Limited market by lsatenstein · · Score: 1

      In 2006, we had a secure phone system that used aes encryption. The process worked by calling a specific number, and via SSH, getting a session AES key. That key encrypted the info before it left the phone, and decripted the info after arriving in the phone. We had it for voice and data.
      AES encryption and decryption was chosen so that the one AES key would serve for both.

      It required a key server functionality between partners who prearranged calls. Ideal for embassies, and for other secure communications.

      --
      Leslie Satenstein Montreal Quebec Canada
    11. Re:Limited market by Fjandr · · Score: 1

      Until you do have a need for it, and then it's too late.

  5. Bootloader unlockable? by mlts · · Score: 2

    I wonder if the bootloader is unlockable so one can make their own ROM for it. The ideal is the ability to type in "fastboot oem unlock", flash a ROM, then relock the bootloader. That way, if someone wants to reflash, they have to re-unlock the bootloader (triggering an erase and TRIM cycle of the /data partition.)

    1. Re:Bootloader unlockable? by LordLimecat · · Score: 1

      Doesnt re-locking the firmware make it impossible to get updates unless theyre signed?

    2. Re:Bootloader unlockable? by LordLimecat · · Score: 1

      Nevermind, it does not.

    3. Re:Bootloader unlockable? by Anonymous Coward · · Score: 0

      Nevermind, it does not.

      Dipshit.

  6. Spy-Proof; Not Court-Proof by ObsessiveMathsFreak · · Score: 5, Insightful

    You can develop all the security technologies you like. They'll be worth precisely nothing when the NSA sends a pup of an agent with a national security letter to seize your files, equipment, and force your co-operation under penalty of imprisonment. The courts remain the ultimate root-kit.

    --
    May the Maths Be with you!
    1. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 5, Funny

      Only third-world countries with no human rights operate like that.

    2. Re:Spy-Proof; Not Court-Proof by houstonbofh · · Score: 4, Insightful

      But you will know. They will not be able to listen in without you knowing. That is a big deal.

    3. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 1

      You can develop all the security technologies you like. They'll be worth precisely nothing when the NSA sends a pup of an agent with a national security letter to seize your files, equipment, and force your co-operation under penalty of imprisonment. The courts remain the ultimate root-kit.

      It should be fairly obvious even to the technical baboons we often find behind the bench that the secure side of the device is limited by definition. One cannot be ordered to produce that which does not exist or was destroyed long ago through sound data attrition policies.

      Therefore, order away courts, you're not going to be able to unring that bell, which is kind of the entire point of this exercise. To make it in fact, Court-Proof.

      Sad to say, it has come to this.

    4. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 0

      Third world countries like . . . the U.S.? The NSA rubber stamp court gives it access to EVERYTHING.

    5. Re:Spy-Proof; Not Court-Proof by Desler · · Score: 1

      thatsthejoke.jpg

    6. Re:Spy-Proof; Not Court-Proof by Krojack · · Score: 1

      Are you sure of this? I always say, It it's created by humans then it can be cracked. You do know the NSA will be ordering a lot of these phones and quickly tearing them apart looking for exploits.

    7. Re:Spy-Proof; Not Court-Proof by viperidaenz · · Score: 1

      So how exactly is a warrant going to get them copies of your encrypted phone calls that haven't been stored on your device?

    8. Re:Spy-Proof; Not Court-Proof by geekoid · · Score: 1

      You can't hide secrets of the future with math. The path of technology history is littered with the bones form 'unbreakable/unhackable/uncrackable' products.

      I wonder how you update the phone? Or prevent someone from installing a keylogger?

      --
      The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect
    9. Re:Spy-Proof; Not Court-Proof by Actually,+I+do+RTFA · · Score: 1

      It gets them a feed into the microphone/earpiece on the other phone, and a gag order giving your friend 20 years in jail if he warns you. And a plea deal where he gets 6 months if you confess, or 20 years if he doesn't convince you to.

      --
      Your ad here. Ask me how!
    10. Re:Spy-Proof; Not Court-Proof by Frosty+Piss · · Score: 2

      But you will know. They will not be able to listen in without you knowing. That is a big deal.

      I though everyone assumed that they were listening? Snowden, you know? Ever heard of COINTELPRO? They have been listening for a long long time.

      --
      If you want news from today, you have to come back tomorrow.
    11. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 0

      They'll already have the encrypted phone calls since those are captured over the network... the warrant will be for your encryption key, which you'll freely provide if you don't want to have a long vacation in Gitmo.

    12. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 0

      Even if you are Chancellor of Germany?

    13. Re:Spy-Proof; Not Court-Proof by tapspace · · Score: 4, Insightful

      Someone should enshrine that in some sort of high code of law upon which all other laws will be based in some sort of new democratic society...

    14. Re:Spy-Proof; Not Court-Proof by OrangeTide · · Score: 1

      I'm waiting for there to be a law against counteracting unlawful snooping.

      --
      “Common sense is not so common.” — Voltaire
    15. Re:Spy-Proof; Not Court-Proof by viperidaenz · · Score: 2

      That's not the problem this device sets out to solve. Nor is it a problem any communication device can solve. If you can't trust the person on the other end after you've verified who they are, technology can't help you.

    16. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 0

      One time pad.

    17. Re:Spy-Proof; Not Court-Proof by houstonbofh · · Score: 1

      You can't hide secrets of the future with math. The path of technology history is littered with the bones form 'unbreakable/unhackable/uncrackable' products.

      I wonder how you update the phone? Or prevent someone from installing a keylogger?

      However, there are several encrypted message from WW2 that are still unbroken. And it doesn't change the fact that you know they are not listening NOW.

    18. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 0

      Nah, too much cipher text to go through. Especially from the streams of white noise being used as cover... (surely I am not the only one streaming gigabits of noise cipher into the NSA machine? ;) The law doesn't always help them either, that's why they have to break it to get their data. This works both ways though, and as near as I can tell Snowden has leaked a lot more of their data than they have mine. So who is winning?

    19. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 0

      boo

    20. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 1

      Assuming you *do* trust them, use what agents in WW2 used: a security code (agreed in advance, face to face.)
      Example, I announce my name on the phone as "Anonymous Coward", then I'm identifying myself, & also saying all is well here.
      But if I say "Anonymous J. Coward" (assuming J is my real middle initial), I'm warning my correspondent that I have been coerced.
      Very hard to prove anything in court about that.

    21. Re:Spy-Proof; Not Court-Proof by Eythian · · Score: 1

      That's the point of this whole phone. So you can assume that they're not listening.

    22. Re:Spy-Proof; Not Court-Proof by petermgreen · · Score: 1

      In many such systems there is simply no such thing as "your encryption key", a key is agreed for the session and then discarded afterwards.

      --
      note: i'm known as plugwash most places but i screwd up registering that here somehow in the past and now can't register
    23. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 0

      UK operates this way and bits up for discussion on slashdot several times. You can get up to 10 years imprisonment each time.

    24. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 0

      plea deal where he gets 6 months if you confess, or 20 years if he doesn't convince you to.

      you missed that part. But then again, this isn't a problem this phone claims to solve.

    25. Re:Spy-Proof; Not Court-Proof by L4t3r4lu5 · · Score: 2

      I always say, It it's created by humans then it can be cracked.

      Yeah, but can it be easily cracked, or cracked within the time frame that the information is still useful? If a criminal can MITM my internet banking and get all of my savings, that is A Bad Thing. In 2006 we could crack Enigma in 4 days with then-modern home PC hardware and an optimised brute force routine. That is absolutely fine; The people who benefited from its use are mostly dead, the war is over, there's no need for the security anymore. In fact, Enigma was so good that almost all of the successful cracks were based on operator error; Enigma was unbreakable at the time when operated correctly.

      Just because something can be cracked doesn't mean it's not fit for purpose.

      --
      Finally had enough. Come see us over at https://soylentnews.org/
    26. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 0

      If only it were that simple.

    27. Re:Spy-Proof; Not Court-Proof by Raenex · · Score: 1

      But you will know. They will not be able to listen in without you knowing.

      How so? They use a National Security Letter to order a wiretap, which in this case means implanting a backdoor. Similar tactics have been used on other people offering encyrption software. Unless you build and program the phone yourself from trusted parts, you're at the mercy of your provider, and the provider is at the mercy of government.

      You really can't expect anything different from the same government that secretly (though with ISP help) installed taps onto all of the major ISPs, can you?

    28. Re:Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 0

      Cryptanalysis via rubber hose?

    29. Re:Spy-Proof; Not Court-Proof by Slayer · · Score: 1

      ... and a pack of inept/corrupt law makers could wipe their butts with that document and laugh in your face.

  7. Free with phone: by GameboyRMH · · Score: 1

    Lifetime membership in the NSA's Super Special Pals club! They'll be thinking about you all the time!

    --
    "When information is power, privacy is freedom" - Jah-Wren Ryel
    1. Re:Free with phone: by houstonbofh · · Score: 1

      Unless it gets popular. Then it will just be the one finger wave.

  8. battery? by magarity · · Score: 1

    How big does the battery have to be to keep all those cores running? Must take up half the interior.

    1. Re:battery? by houstonbofh · · Score: 1

      It's not like anyone with a modern smart phone doesn't keep it plugged in all the time anyway. Notice how they do not call them "cordless" anymore...

    2. Re:battery? by Anonymous Coward · · Score: 0

      This is true for many devices.
      The iPad, for example, is mostly battery in the chassis. The motherboard fits in the upper right corner, and is about 4in x 2in in size, compared to the battery which is at least 3x/4x larger.

    3. Re:battery? by Anonymous Coward · · Score: 0

      Android isn't very power-efficient either way. It likely sits at the same 24 hour battery time as all other Android-powered models. In other words, a stationary smartphone.

    4. Re:battery? by Anonymous Coward · · Score: 0

      from first hand experience with samsung galaxy s2 and an htc one, i know that's the case with android models due to android's rampant cpu usage even in idle state, but ios phones go for days between charges. i'm right now looking at my gf's apple 4s phone and it has 21% battery left with 4 days and some hours of standby and 5 hours of active use according to the usage section.

    5. Re:battery? by geekoid · · Score: 1

      I use a nexus 4. I plug it in before bed, unplug it in the morning when it's alarm goes off.

      So, not it's not plugged in all the time, or even most of the time.

      --
      The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect
  9. Backdoored by Anonymous Coward · · Score: 0

    Obvious one...

  10. RedPhone from Whispersystems ( +5, Good ) by Anonymous Coward · · Score: 0

    is available here.

    Enjoy !

  11. And who makes the baseband? by Anonymous Coward · · Score: 0

    And who makes the baseband, arguably the most important part of the phone for privacy reasons, as it's the one directly connected to the microphone et al.

    1. Re:And who makes the baseband? by Desler · · Score: 2

      Nvidia through their acquisition of Icera. It's a software modem.

    2. Re:And who makes the baseband? by viperidaenz · · Score: 3, Informative

      It's not directly connected to the microphone. That's connected to an audio codec controlled by the application processor.

  12. Ultimate security by Anonymous Coward · · Score: 0

    Your calls, texts, and emails can only be decrypted by another BlackPhone, so you most likely won't have anyone to talk to, thus making for the perfect security system.

    Who except for criminals and terrorists are actually going to buy this thing, or am I missing something?

    1. Re:Ultimate security by viperidaenz · · Score: 1

      RTFS

      many Fortune 50 companies have already ordered the phone to protect against industrial espionage.

    2. Re:Ultimate security by Zero__Kelvin · · Score: 1

      "Who except for criminals and terrorists are actually going to buy this thing, or am I missing something?"

      I'm going to go with ... "Half a Brain" FTW!

      --
      Guns don't kill people; Physics kills people! - John Lithgow as Dick Solomon on Third Rock From The Sun
  13. Whoa, 60 GPU cores! by Anonymous Coward · · Score: 0

    Gotta highlight that in a phone aimed at privacy and security.

    1. Re:Whoa, 60 GPU cores! by Krojack · · Score: 1

      Yet only has 1 gig of RAM. I won't even look at a phone unless it has at least 2.

    2. Re:Whoa, 60 GPU cores! by Anonymous Coward · · Score: 0

      this is for secure comms, you'd be an idiot if you bought it to run angryBirds on it.

    3. Re: Whoa, 60 GPU cores! by Anonymous Coward · · Score: 0

      GPU cores are good at math. This phone will do a lot of encryption which involves math. That seems relevant to me.

  14. YOU are the weakest link by Anonymous Coward · · Score: 0

    If your phone itself is the weakest link in your security chain I envy you.

  15. It's a trap! by Anonymous Coward · · Score: 0

    Phil Zimmerman has been compromised. Stay well away!

  16. Carriers by Gryle · · Score: 1

    In all seriousness, what US carriers will let you use this phone? I can't see this being offered in-store to every Joe Friday that walks in off the street (the demand isn't high enough, depressingly) and most carriers like you to buy a particular phone to use on their particular network. How do I go about using one of these (well, two of these) in day-to-day activities?

    --
    Only two things are infinite, the universe and human stupidity, and I'm not entirely sure about the universe - Einstein
    1. Re:Carriers by Anonymous Coward · · Score: 0

      T-Mobile for one. Even though they don't talk about it you can actually use a phone you got elsewhere on AT&T's network as well. I though do find it a bit of a tragedy that CDMA is superior to GSM (TDMA) in nearly way, except only GSM gives you a SIM (though phones from carriers are generally locked). I've yet to hear of CDMA worldphones, despite how some countries are CDMA-only...

    2. Re:Carriers by Desler · · Score: 1

      Why would you need to buy one in a carrier store? Simply buy a SIM card from the carrier and put it in your phone. That's as trivial as it is to use it on either AT&T or T-Mobile.

    3. Re:Carriers by Desler · · Score: 1

      There are CDMA worldphones. They are simply multi-mode phones.

  17. Spy-Proof; Not Court-Proof by Anonymous Coward · · Score: 1

    Your argument is defeatist.

    Court or not, this is a great step towards "doing all we can" to counteract unlawful snooping.

  18. Re:FailZors by Anonymous Coward · · Score: 0

    what's the point of sending badly written bots to slashdot to make posts like this? why bother to do this? you're not even advertising a product here.

  19. Is the Hardware safe? by Anonymous Coward · · Score: 0

    How do the creators know the hardware is not corrupted? NVIDIA could have added/changed something, or the foundry, or the manufacturer of the board and supporting chips, or the microcode, or the other computer which controls the phone and antenna (all cell phones have this) ...? The android/software part seems like the least of concerns.

    1. Re:Is the Hardware safe? by Anonymous Coward · · Score: 0

      It isn't meant to prevent targeted spying. After all, they could clone the damn thing, substitute their bugged replacement at the airport as you pass through security. Similarly it can't stop them recording everything you do (encrypted) for a few months, then getting a court-order to seize your phone (and its crypto keys), to enable them to retroactively decrypt everything they've recorded.

      It's meant to stop routine vacuuming of everything from everyone. It's meant to make it harder for them.

      A firewall doesn't protect the data on your harddrive from an attacker who is in a position to physically remove the drive from your computer, does that mean you advise people not to run a firewall? A password doesn't protect you if the attacker can record your keystrokes, does that mean you shouldn't use passwords?

  20. Cause the government got tired of backdoors by penguinoid · · Score: 1

    from other people, interfering with theirs?

    --
    Don't waste your vote! Vote for whoever you want, unless you live in a swing state it won't matter anyways
  21. not spy-proof by Anonymous Coward · · Score: 0

    It not spy-proof, the output of the speaker and display are not encrypted.

  22. is it American ? by Anonymous Coward · · Score: 0

    because these days thats the only question you need to ask.

  23. Re:FailZors by koreanbabykilla · · Score: 1

    I have seen theories its a numbers station lol. Who knows why people do most the weird shit they do though.

  24. Pff by Greyfox · · Score: 1

    The NSA already knows about those live goat porn sites you browse, that you like to dress up like a nun and get spanked with a toilet brush on Friday nights and they already have a picture of your dong. So really, what do you need a secret spy phone for, again?

    --

    I'm trying to teach myself to set people on fire with my mind... Is it hot in here?

  25. Re:FailZors by Anonymous Coward · · Score: 0

    Using up mod-points? Send in a bunch of random-bots. Then immediately afterwards, send in the spam-bots.

    Or else testing/training the code with seemingly harmless gibberish before changing the payload?

    [I also like the numbers station idea.]

  26. Shill much? by Anonymous Coward · · Score: 0

    with android models due to android's rampant cpu usage even in idle state, but ios phones go for days between charges

    Oh bullshit. I keep my Android (Samsung) turned on 24/7 and it typically pulls 3-4 days between charges. (Over 5 days if I let it go until it switches itself off.) That's based on actual use over a year, not what the phone tells me. If I turn it off overnight, every night, it barely changes the time between charges. Idle is clearly not consuming much. (Which is why I just leave it on.)

    1. Re:Shill much? by Actually,+I+do+RTFA · · Score: 1

      If I turn it off overnight, every night, it barely changes the time between charges. Idle is clearly not consuming much.

      Or "off" is consuming far more power than you would think.

      --
      Your ad here. Ask me how!
  27. Not sniping, genuinely curious... by FatLittleMonkey · · Score: 1

    Have you honestly never heard of people buying SIM cards for existing phones? Outright purchase? Unlocked phones?

    --
    Science is all about firing a drunk pig out of a cannon just to see what happens.
    1. Re:Not sniping, genuinely curious... by Gryle · · Score: 1

      No, not really, not outside of something like a GoPhone or a similar "burner"-type program. Then again, I still have a flip-phone (Samsung Rubgy II to be exact) and if I didn't have to have it for work, I'd not have a cellphone at all.

      --
      Only two things are infinite, the universe and human stupidity, and I'm not entirely sure about the universe - Einstein
    2. Re:Not sniping, genuinely curious... by FatLittleMonkey · · Score: 1

      Next time you are in a supermarket, have a look at their handset/recharge/charge-card display. Chances are they have dozens of "pre-paid starter kits" for every carrier (and reseller) in your area. These contain just a SIM card, no handset.

      Even with carrier-locked handsets, you can normally use any new SIM kit from that carrier. More importantly, you can buy almost any brand of handset unlocked from the manufacturer, and hence run any SIM kit from nearly any carrier. This is particularly useful for travellers who want to avoid the hideous "international roaming" charges from their own carrier.

      Carrier-approval is only required for subsidised phones sold through their own branded outlets. And my guess is that the Fortune500 companies buying these crypto-phones for their senior people are going to buy them outright, unlocked, not wait for carrier-subsidised versions to come out.

      --
      Science is all about firing a drunk pig out of a cannon just to see what happens.
    3. Re:Not sniping, genuinely curious... by Gryle · · Score: 1

      Learn something new every day. Thanks for the information.

      --
      Only two things are infinite, the universe and human stupidity, and I'm not entirely sure about the universe - Einstein
  28. Just manipulate the phone in transit. by Anonymous Coward · · Score: 0

    All technical arguments aside, the NSA can just take it from UPS and do whatever they like to the phone. Unless the transfer of the phone is secure, which it isn't, the phone is NOT secure.

  29. Rather do it with 100% source & RPi by Anonymous Coward · · Score: 0

    Problem is domain where this encryption is taking place. I rather go with 100% source built kernel & RPi HW. Like in http://www.tearcomm.com/community

    1. Re:Rather do it with 100% source & RPi by Anonymous Coward · · Score: 0

      That concept would also be fantastic for e-mail!

  30. Just a few things by EmagGeek · · Score: 1

    1) There is no such thing as spy-proof
    2) If you can install an app on it, it is not secure
    3) If you can connect it to a network, it is not secure
    4) If you do not own and have complete access to audit all firmware, including the radio, then it is not secure
    5) The Blackphone looks like nothing more than a platform from which to sell expensive annual subscriptions to quasi-private services

  31. "In demand"? by Anonymous Coward · · Score: 0

    So, 2? 3?

  32. Screen filter by GuB-42 · · Score: 1

    Is there a privacy screen filter ? The kind where you can see the screen only from a narrow angle.
    Some Japanese phones, which are commonly used in crowded trains feature this. I think it is an essential privacy feature.
    Ah and a physical, highly visible, camera lens cap too.