How secure is Sailfish OS?

asked 2016-10-26 20:30:39 +0300

hansabe gravatar image

updated 2016-10-26 20:31:17 +0300

pawel gravatar image

Compared to Android, how secure is Sailfish OS? I guess there are two scenarios to cover. One is when using native apps and the other when using android apps. The reason for me asking is I'm thinking of installing an Android app (mobile BankID) which is needed to be able to use the Swedish electronic 'ID-card' (BankID) which basically is a unique personal certificate. This certificate can be issued by a limited number of authorized actors in Sweden, among them most of our large bank-companies. Now, I have avoided this BankID so faar because I do not really trust the security of Android and it seems a little scary to place my identity, available to steal by any 'hacker', in a mobile device run by Android. But then hopefully, Sailfish OS is a more secure OS?

edit retag flag offensive close delete

Comments

2

welcome, how-to tag is reserved for step-by-step instructions

pawel ( 2016-10-26 20:31:44 +0300 )edit

No existing device is secure against a local attacker (meaning, somebody who can get the device in her hands and has all the time it takes to crack it)

As for remote attacks; (meaning, attack using some wireless method like BT, WLAN, 3G) it depends really what you have installed on the device.

juiceme ( 2016-10-26 20:55:44 +0300 )edit
1

@hansabe i guess the best answer to you qestion is in this thread.

misc11 ( 2016-10-26 22:35:46 +0300 )edit

rather an opinion, not a an answer: in germany they (the government) tried to push all into a electronic ID-Card (elekrtonischer Personalausweis). Luckily all their sample applications suck so hard, that they didn't managed to convince anyone to sacrifice the personal identity. If you use some kind of these: noting is secure, just securer than other things
I can only recommend: don't use such stuff, most of the arguments tell you that your life become so easier and so, if that is true, it is neglectable.

As always: The question is not if your or the server gets hacked. It is when.

Most kinds of electronic signatures can and will be used as proof against you.

hoschi ( 2016-10-26 23:36:10 +0300 )edit