nostr:nprofile1qy2hwumn8ghj7un9d3shjtnddaehgu3wwp6kyqpq5tvv6c5rdcj2z03r5sw5dzl36qx2kkpqe47yscckve5a2h0psstsa9skc4 nostr:nprofile1qy2hwumn8ghj7un9d3shjtnddaehgu3wwp6kyqpqg8pqukfm966n6h9dkashxtuuudztqgpwtgwhyy6mvw6yx8xj7vhqlkkckx

Fairphone 4 used publicly available private keys for signing the firmware and OS. Lack of working verified boot and attestation is far from the most serious security drawback but helpful for understanding how little goes into securing most Android devices.

Lots of people regularly ask them to implement the security requirements we list so GrapheneOS could support it and they explicitly said they don't even plan to add a basic secure element for working encryption for most users.