Apple has already done the same with macOS 10.15 Catalina in 2019. No more kernel extensions = much better kernel-level security
This will become the industry standard
To all the people downvoting this, look at this comment https://lemmy.dbzer0.com/comment/15369807
@1985MustangCobra@lemmy.ca @capital@lemmy.world @disconnectikacio@lemmy.world @MehBlah@lemmy.world
So, Android 9 / 10?
In that case, no. I assumed we were talking about up-to-date devices.
If you aren't wanted by three letter agencies
Keep in mind, you don't have to be an activist or journalist to get targeted with sophisticated spyware. This very recent Lemmy post is a great example: https://slrpnk.net/post/15858999
What does this have to do with GrapheneOS (compared to Lineage)? Did you reply to the wrong comment?
We don't know everything it can do
Neither do we know this about any other CPU on the market. All chipsets on the market are proprietary. All of them. And no, despite many people (who don't know anything about what they are talking about) claiming this, RISC-V won't actually solve any of these issues. Sure, the ISA is open source, but the ISA would be the worst place for malicious actors to introduce a backdoor. I can guarantee you that despite using the RISC-V ISA, the chips themselves will still be fully proprietary and the IP will be highly protected as trade secrets. You can build a fully RISC-V conformant chip with a backdoor, there's absolutely nothing in place that could stop this, and it surely won't change for the forseeable future.
Do you mind sharing which bank you use?
You can use this website to check if your banking app is supported: https://privsec.dev/posts/android/banking-applications-compatibility-with-grapheneos/
LineageOS itself drastically weakens security even compared to stock AOSP, for example by exposing root access or deploying insecure SELinux policies
Security-wise you're better off using whatever OS comes with your device (as long as it gets updates) than downgrading to LineageOS. At least most smartphone vendors (except for Fairphone) manage to ship their Stock OS with a locked bootloader and somewhat working Verified Boot.
Yes, I use GrapheneOS myself, but just know that it doesn't make any changes to AOSP other than privacy and security enhancements. Apps can still prevent you from taking screenshots on GrapheneOS.