Depends on if Fairphone wants to take security ‘seriously’ by Graphene OS opinion.
I don’t know the details of these specific folks, but sometimes a security team can be wholly unreasonable and advocate for breaking useful capabilities. E.g. there are some security folks that would say the entire possibility of unlocked bootloader is an unforgiveable security no-no. They can even argue with each other, I know a security team that says password managers are a no-no and humans should remember every credential that they would have otherwise put in a password manager, while most security folks would agree a password manager is totally worth it for using randomized passwords.
So I tend to reserve judgement on disagreements between a ‘security authority’ until I hear nuance of specifics on both sides. I could easily believe GrapheneOS wants some things that are fundamentally at odds with what Fairphone wants rather than just Fairphone being sloppy about it or something.
An unlocked bootloader that can’t be relocked IS a major no no since in that case it’s impossible to verify the integrity of the operating system and prevent malware from loading during boot up.
That’s not the reason, the real reason is Fairphone doesn’t take security seriously. The GrapheneOS devs have called them out numerous times on that.
Who haven’t the gosdevs called out? Not even OpenBSD are as callous and their work is rock solid.
But if they partnered with GrapheneOS, there could have been a concerted effort to remedy that.
Depends on if Fairphone wants to take security ‘seriously’ by Graphene OS opinion.
I don’t know the details of these specific folks, but sometimes a security team can be wholly unreasonable and advocate for breaking useful capabilities. E.g. there are some security folks that would say the entire possibility of unlocked bootloader is an unforgiveable security no-no. They can even argue with each other, I know a security team that says password managers are a no-no and humans should remember every credential that they would have otherwise put in a password manager, while most security folks would agree a password manager is totally worth it for using randomized passwords.
So I tend to reserve judgement on disagreements between a ‘security authority’ until I hear nuance of specifics on both sides. I could easily believe GrapheneOS wants some things that are fundamentally at odds with what Fairphone wants rather than just Fairphone being sloppy about it or something.
An unlocked bootloader that can’t be relocked IS a major no no since in that case it’s impossible to verify the integrity of the operating system and prevent malware from loading during boot up.
Also a good reason but you can’t get Fairphones in North America which is a huge market.