Revision history [back]
 | 1 | initial version | posted 2014-09-02 16:31:37 +0200 |
Baseband processor, security and isolation
The baseband processor is a closed source highly proprietary Qualcomm module, running a secondary (RT)OS on your Jolla. The main problem with these processors is of course that they have no open security audits and probably are riddled with bugs. They may be breached by hackers today, since mobile open source base stations can be bought. Even worse is that the baseband processor may gain access to services that should be in control of the phone OS.
I absolutely don't want to sound alarmist. Though with all of this in mind, I'd like to know if Sailfish is doing anything to help secure the phone data and OS from the baseband processor? Has Jolla thought of protecting their phones from security breaches through the baseband processor? And if so, how?
For more information on baseband security concerns see this.
| | 2 | No.2 Revision |
Baseband processor, security and isolation
The baseband processor is a closed source highly proprietary Qualcomm module, running a secondary (RT)OS on your Jolla. The main problem with these processors is of course that they have no open security audits and probably are riddled with bugs. They may be breached by hackers today, since mobile open source base stations can be bought. Even worse is that the baseband processor may gain access to services that should be in control of the phone OS.
I absolutely don't want to sound alarmist. Though with all of this in mind, I'd like to know if Sailfish is doing anything to help secure the phone data and OS from the baseband processor? Has Jolla thought of protecting their phones from security breaches through the baseband processor? And if so, how?
For (For more information on baseband security concerns see this.)
| | 3 | retagged |
Baseband processor, security and isolation
The baseband processor is a closed source highly proprietary Qualcomm module, running a secondary (RT)OS on your Jolla. The main problem with these processors is of course that they have no open security audits and probably are riddled with bugs. They may be breached by hackers today, since mobile open source base stations can be bought. Even worse is that the baseband processor may gain access to services that should be in control of the phone OS.
I absolutely don't want to sound alarmist. Though with all of this in mind, I'd like to know if Sailfish is doing anything to help secure the phone data and OS from the baseband processor? Has Jolla thought of protecting their phones from security breaches through the baseband processor? And if so, how?
(For more information on baseband security concerns see this)