6.0 KiB
meta_title, title, description, schema, robots
| meta_title | title | description | schema | robots | ||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| The Best Android Operating Systems - Privacy Guides | Alternative Distributions | You can replace the operating system on your Android phone with these secure and privacy-respecting alternatives. |
|
nofollow, max-snippet:-1, max-image-preview:large |
Protège contre les menaces suivantes :
- :material-target-account: Attaques ciblées{ .pg-red }
- :material-bug-outline: Attaques passives{ .pg-orange }
Un système d'exploitation personnalisé basé sur Android (parfois appelé un ROM personnalisé) peut être une façon d'atteindre un niveau plus élevé de confidentialité et de sécurité sur votre appareil. Cela contraste avec la version "stock" d'Android, qui est installé sur votre appareil par défaut lors de la fabrication. Cette version est souvent profondément intégrée aux services Google Play ainsi qu'à d'autres logiciels fournisseurs.
Nous recommandons d'installer GrapheneOS si vous avez un Google Pixel, puisqu'il procure des renforcements au niveau de sécurité et des fonctionnalités de confidentialité additionnelles. Les raisons pourquoi nous ne mentionnons pas d'autres systèmes d'opérations ou d'appareils sont les suivantes :
- Ils ont souvent une sécurité plus faible.
- Support is frequently dropped when the maintainer loses interest or upgrades their device, which is in contrast to the predictable support cycle that GrapheneOS follows.
- They generally have few or no notable privacy or security improvements that make installing them worthwhile.
GrapheneOS
{ align=right }
{ align=right }
GrapheneOS is the best choice when it comes to privacy and security.
GrapheneOS provides additional security hardening and privacy improvements. It has a hardened memory allocator, network and sensor permissions, and various other security features. GrapheneOS also comes with full firmware updates and signed builds, so verified boot is fully supported.
:octicons-home-16: Homepage{ .md-button .md-button--primary } :octicons-eye-16:{ .card-link title="Privacy Policy" } :octicons-info-16:{ .card-link title=Documentation} :octicons-code-16:{ .card-link title="Source Code" } :octicons-heart-16:{ .card-link title=Contribute }
GrapheneOS supports sandboxed Google Play, which runs Google Play Services fully sandboxed like any other regular app. This means you can take advantage of most Google Play Services, such as push notifications, while giving you full control over their permissions and access, and while containing them to a specific work profile or user profile of your choice.
Google Pixel phones are the only devices that currently meet GrapheneOS's hardware security requirements.
By default, Android makes many network connections to Google to perform DNS connectivity checks, to sync with current network time, to check your network connectivity, and for many other background tasks. GrapheneOS replaces these with connections to servers operated by GrapheneOS and subject to their privacy policy. This hides information like your IP address from Google, but means it is trivial for an admin on your network or ISP to see you are making connections to grapheneos.network, grapheneos.org, etc. and deduce what operating system you are using.
If you want to hide information like this from an adversary on your network or ISP, you must use a trusted VPN in addition to changing the connectivity check setting to Standard (Google). It can be found in ⚙️ Settings → Network & internet → Internet connectivity checks. This option allows you to connect to Google's servers for connectivity checks, which, alongside the usage of a VPN, helps you blend in with a larger pool of Android devices.
Critères
Please note we are not affiliated with any of the projects we recommend. In addition to our standard criteria, we have developed a clear set of requirements to allow us to provide objective recommendations. Nous vous suggérons de vous familiariser avec cette liste avant de choisir d'utiliser un projet, et de mener vos propres recherches pour vous assurer que c'est le bon choix pour vous.
- Doit être un logiciel open source.
- Must support bootloader locking with custom AVB key support.
- Must receive major Android updates within 0-1 months of release.
- Must receive Android feature updates (minor version) within 0-14 days of release.
- Must receive regular security patches within 0-5 days of release.
- Must not be "rooted" out of the box.
- Must not enable Google Play Services by default.
- Must not require system modification to support Google Play Services.