Guardian:Secure, Open-Source Smartphone built on Google Android

G

anonymousencryptedinvisibleobfuscatedubiquitous

Open sourcemodernpowerfulflexible

AndroidPhone

GuardianPhone

G

+ =

+ GuardianFirmwareUpdate

GuardianSD Card

WindowsMobilePhone

AndroidPhone =

TemporaryGuardian

Phone

PermanentGuardian

Phone

HTC, Kogan, Lenova, Huawei, Motorola, LG, Samsung, Asus

http://www.androidonhtc.com

GG G

G

G

Guardian is Viral

GuardianPhone

GuardianSD Card

Phones canbe converted

through SD Card“Person to Person”

contact

New Communitiesof Guardians

Google Android

G

A movement is already underway to create custom versions of Android for a wide variety of phones and purposes.... we just need to tap into that!

Why Android?

Dominant open-source smartphone OS

Easy to convert commercially available handsets

Linux-based with modern development tools

Rich connectivity, location, and sensor features

Backed by Google’s resources and finances

Android Features

Dalvik virtual machine optimized for mobile devices

Integrated browser based on the open source WebKit engine

SQLite for structured data storage

Media support for common audio, video, and still image formats (MPEG4, H.264, MP3, AAC, AMR, JPG, PNG, GIF)

GSM Telephony (hardware dependent)

Bluetooth, EDGE, 3G, and WiFi (hardware dependent)

Camera, GPS, compass, and accelerometer (hardware dependent)

The State of Mobile Crypto

G

Existing products show promise, but are out of date, not good enough or too expensive

Existing Solutions

Providers: CryptoPhone, SecureGSM, NanoPhone Suite

Analog GSM solutions almost entirely for Windows Mobile Smartphones

Corporate focus, poor quality audio, out of date OS and very expensive

Products are not for covert use - they advertise their existence putting user at risk

Popular Smartphones...iPhones and Blackberries are inherently compromised,

closed-source and compromised by mobile carriers

A password safe for Android that protects your passwords with AES encryption. All encrypted information is stored in a database on the phone. No information is kept online. The only way to backup currently is through the export feature.

http://code.google.com/p/android-passwordsafe/

Early Efforts on Android Need Work!

Creating Guardian

G

a.e.i.o.u.’s of Guardian

anonymous

encrypted

invisible

obfuscated

ubiquitous

Able to be used without revealing the user

All communication and data is secured and protected

Doesn’t reveal itself to be anything out of the ordinary

Hides itself within the noise and traffic of the network

Widely available, easy to use, cheap and open-source

User Requirements

Be hidden and invisible from the casual observer

Provide secure communication without complexity

Don’t incriminate the user or owner

Offer “emergency” features that are quick to active

Open-source and able to run on cheap, common hardware

Internationalized & Localized

The Android Operating System

2) Wrap or replace Application Framework, while adding new libraries and core security services

1) Enhance existing & develop new secure applications

3) ensure kernel, runtime and virtual machine are “snoop” proof

4) Secure or remove drivers to secure the hardware layer

Android O.S. + Guardian Security Layer

Build on Existing ProjectsThe Tor ProjectTor is a software project that helps you defend against traffic analysis, a form of network surveillance that threatens personal freedom and privacy, confidential business activities and relationships, and state security

Psiphonpsiphon is a human rights software project developed by the Citizen Lab at the Munk Centre for International Studies that allows citizens in uncensored countries to provide unfettered access to the Net through their home computers to friends and family members who live behind firewalls of states that censor.

ZfoneZfoneTM is a new secure VoIP phone software product which lets you make encrypted phone calls over the Internet. Zfone uses a new protocol called ZRTP, which has a better architecture than the other approaches to secure VoIP.

Guardian Application Suite

Anonymous Browser

Media+Location Reporting Tool

Encrypted Email

Secure Voice Communications

Encrypted Data Storage

Remote Poison Pill

“911” Alert Mechanism

Secure Data Auto-Sync

open-source, geotaggingmedia capture report clienthttp://openideals.com/greporter

G

gReporter

gReporter

Records Location

Records Audio, Photo, Video

Transmits to Secure Server

Walkie Talkie Push to Talk

Routing via Stenography

G

Route encrypted data exchange through common services (Gmail, YouTube, Amazon, etc), as to not stand out

authoritarian state

“Safe”Organization

Gmail

YouTube

Amazon

Skype

What is Needed

G

Community

Launch an official, public project in order to recruit open-source developers, supporters and potential users and funders

Recruit the top open-source Android kernel hackers, app developers

Find pilot project partners to test and validate technology in the field

Create a strong brand around the project, like TorProject.org has

Funding / Model

Work with existing projects (Tor, Psiphon) to extend their funding and focus to support Android

Apply for new grants through existing “tech activist” funding organizations

Create a business model for selling pre-configured or customized firmwares and telephones to consumers and larger organizations

GuardianNathanial Freitasnathan@freitas.net@natdefreitasskype: nathanialfreitas

http://openideals.com/guardian

G

a project ofStudents for a Free Tibethttp://studentsforafreetibet.org

G