5 Comments

Summary:

The device’s release will be a test case both for bundling privacy-centric tools in a user-friendly way, and for carving out a niche in the modern mobile platform wars.

Blackphone

Blackphone, the first consumer-grade handset explicitly marketed as a privacy guardian, has begun shipping.

Revealed at the start of this year, Blackphone runs a fork of Android called PrivatOS and comes bundled with a variety of security-centric tools and subscriptions, including Silent Phone and Silent Text (for normal voice, video and text communications), Disconnect (VPN and search), SpiderOak (cloud storage) and the Smarter Wi-Fi Manager (for protection from dodgy hotspots).

Shipping forecast

According to Toby Weir-Jones, CEO of recently funded Blackphone company SGP Technologies, the first units of the $629 handset to ship are for European LTE users, and U.S. units will follow. In both cases, preorder production runs come first, then units for those who have not already ordered the device.

Weir-Jones said the preordering process had not required people to say a lot about themselves, but it appeared that most preorders came from individuals rather than companies. About 58 percent of orders came from Europe, followed by the U.S., then Asia, Latin America and the Middle East and Africa.

“European carriers are the most progressive in terms of exploring how to take advantage of this as a commercial opportunity,” Weir-Jones added, pointing to KPN’s stocking of the handset. As he explained, SGP is selling the Blackphone to carriers at a “distributor-type price point,” unlike the “big players” who force carriers to pay close to retail price for their devices. It’s also touting the fact that customers will probably be frequent upgraders and high-margin data plan users.

Weir-Jones also noted that customers will enjoy frequent firmware updates, with over-the-air updates coming from Blackphone/SGP, not the carrier. This is necessary from a security standpoint if nothing else: “We’re not committing to a rigid schedule, because there will always be exceptions, but… I’d be surprised if a month went by without an update. In general, assume an average of every three weeks.”

Good start?

The first review of the Blackphone, over on Ars Technica, is pretty positive. As reviewer Sean Gallagher wrote:

“We found that Blackphone lives up to its privacy hype. During our testing in a number of scenarios, there was little if any data leakage that would give any third-party observer anything usable in terms of private information. As far as its functionality as a consumer device goes, Blackphone still has a few rough edges.”

That sounds like a good start, and I’m looking forward to playing around with a sample soon in order to form my own opinion of the Blackphone’s viability. Many security tools are out there, but using them isn’t simple enough, and the world needs products that package these tools in a user-friendly way.

Weir-Jones said the firm was already working on a “family of products” that will include a tablet and other phones. He said that, as a company that’s catering to “a niche that is very knowledgeable and has high expectations, but is also very interested in staying current,” SGP was particularly excited about upending “current commercial models for how platform ecosystems work in mobility.”

That’s an interesting aspect to keep an eye on: after all, this is a small player forking Android and therefore forgoing the Play Store in favor of a new ecosystem of privacy-centric service providers. If it targets its niche well, it could demonstrate the viability of surviving in the mobile manufacturer business without being Samsung or Apple.

“I’m comfortable with our Version 1 product and we’ve done a good job bringing it to market,” Weir-Jones said. “The feedback will inform our roadmap, and I’m interested to see what features they demand and hear stories about how they use the phone.”

You’re subscribed! If you like, you can update your settings

Comment

Community guidelines
Saturday, August 30, 2014
you are commenting using your account. Sign out / Change

Comment using:

Or comment as a guest

Be sure to review our Community Guidelines. By continuing you are agreeing to our Terms of Service and Privacy Policy.

5 Comments

  1. can these really be trusted sold through carriers not to be tampered with? anything like this there is always a chance the whole thing is a honey pot designed to lure people in to be monitored. but i would certainly trust it more if they were sold directly to end users and not through the companies that are the primary enablers of government monitoring.

    for someone truly concerned about privacy, these should be sold directly to the public for cash or or online for bitcoin and the service agreement should be a throw away prepaid SIM card obtained separately. this seems way too commercially focused to be trusted.

    1. Apart from those sold through KPN, all these pre-sales and so on are direct to the end user. Either way, updates bypass the carrier.

  2. Rufo Guerreschi Monday, June 30, 2014

    It would be good to differentiate a 1-day journalist end-user review, with a couple of attack simulations, from the kind of technical indecent review needed of a device that makes such hefty claims.
    Such review would require complete verifiability and extreme actual verification of all potentially-critical sw, firmware and hw involved, in addition to hw design and manufacturing process!
    Are Technica journalist review is very bad disinformation, as it does not even inform users if scientific assessment of its security from advanced threat actors is even possible, by letting them know which hw, sw or firmware source code or documentation is NOT currently available for independent review without NDA. In the past Blackphone committed to releasing info and source code, albeit not specifying which. Now they don’t even tell as the best tech writer don’t even ask…

  3. The baseband processor is the big security question, no matter how secure the OS is:

    https://www.fsf.org/blogs/community/replicant-developers-find-and-close-samsung-galaxy-backdoor

    1. @adamelteto
      That is the big question, I agree. And may be solved only by switching to older and/or lesser performing processors that allow design and manufacturing verification.
      But this guy haven’t even answered the little questions such “what software or firmware on your device is not free software or publicly verifiable without NDA? What level of verification was performed by presumably non malicious actors? Etc etc etc