dangerzone icon indicating copy to clipboard operation
dangerzone copied to clipboard
verified publisher icon freedomofpress

Support for mobile operating systems

Open sudwhiwdh opened this issue 2 years ago • 2 comments

Hello, more and more often I get my documents already via email or messenger on the smartphone or there are downloads of documents during mobile data usage in the browser. What are your thoughts on mobile versions of Dangerzone?

Further evidence / Notes

During a user study one study participant also asked if Dangerzone was available on mobile

sudwhiwdh avatar Feb 28 '23 07:02 sudwhiwdh

Oof, that's a good question. Unlike PC OSes, mobile OSes have some unique characteristics:

  1. They do not allow elevating the privileges of apps (at least by default).
  2. They employ a form of sandboxing (SELinux, seccomp, different user IDs) by default.

So, the current architecture of Dangerzone cannot fit to this model. One may be tempted to think that smartphones provide the functionality that Dangerzone has, but you have to remember that the issues of document sanitization, Internet access, malware persistence still remain.

A client-server model would be an interesting thing to explore, but it would require a reasonably trusted server, which is not something that most users have. Another approach would be to provide some of the features of Dangerzone, at the expense of some security features, for users that would open documents in their smartphone after all. This is a trade-off that Dangerzone made from the start, as it never had a purist approach to security.

Those are my personal views on this subject. I'd say it's still an open problem, and I'd definitely encourage for more input from the community.

apyrgio avatar Mar 06 '23 09:03 apyrgio

Oof, that's a good question. Unlike PC OSes, mobile OSes have some unique characteristics:

  1. They do not allow elevating the privileges of apps (at least by default).
  2. They employ a form of sandboxing (SELinux, seccomp, different user IDs) by default.

So, the current architecture of Dangerzone cannot fit to this model. One may be tempted to think that smartphones provide the functionality that Dangerzone has, but you have to remember that the issues of document sanitization, Internet access, malware persistence still remain.

A client-server model would be an interesting thing to explore, but it would require a reasonably trusted server, which is not something that most users have. Another approach would be to provide some of the features of Dangerzone, at the expense of some security features, for users that would open documents in their smartphone after all. This is a trade-off that Dangerzone made from the start, as it never had a purist approach to security.

Those are my personal views on this subject. I'd say it's still an open problem, and I'd definitely encourage for more input from the community.

yeah your right ;)

IDIVASM avatar Mar 22 '23 16:03 IDIVASM