this post was submitted on 02 May 2025
379 points (81.8% liked)

Technology

69701 readers
2867 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
379
Several phone brands rumored to be planning a major shift away from Android (www.phonearena.com)
submitted 2 days ago by [email protected] to c/[email protected]
169 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] -5 points 2 days ago (1 children)

If you can implement an equivalent to Apple's Secure Enclave on a device running that, I'll be interested. I haven't seen even a device running Android doing that yet though.

[โ€“] [email protected] 2 points 20 hours ago

Samsung actually added Knox to their Android implementation a few months before iOS added Secure Enclave. I think Qualcomm had some sort of trusted execution environment around that time, too, if I recall correctly. And Google added Trusty to the AOSP two years ago. So it's already running on Android, and has been for ages.

But I'm not convinced a TEE would be necessary for a device that doesn't run any third-party native code. Browser tab sandboxing is already pretty robust; I haven't heard of an escalation exploit being found in ages on any major JavaScript engine, meaning that the risk of data exfiltration or bootloader compromise are extremely remote, and would be much quicker (and less risky!) to patch via browser updates than firmware/OS updates.

The only other reason I know of that you'd need a TEE is for DRM, and I'd be willing to wager most people who would want a FirefoxOS phone would actively prefer not to have that on their device.