In recent months, I have noticed a certain fever – in a small tech circle, it must be said – for GrapheneOS. It has reached such a point that there are several optimists selling phones with this system at exorbitant prices. For example, a used Pixel 6a for 400 euros simply for having it installed.
I wanted to try out for myself what GrapheneOS is, how to install it and what advantages it has over the stock ROM on my phone. In this case, a somewhat outdated Google Pixel 6 that is still going strong.
What is GrapheneOS
GrapheneOS is intended by its developers as a “private and secure mobile operating system compatible with Android applications. Developed as a non-profit open source project.” It was born in 2024 as CopperheadOSand its main objective is Maximize system security and privacy.
GrapheneOS is based on AOSP – the Android source code – and from it creates an extremely secure system that is compatible with Android applications.
There are no Google services if we don’t want themthe installed applications are the minimum and necessary for the phone to be functional. In other words, the aim is to start from the Android source code (AOSP) and create a system that is as secure and private as possible, avoiding the constant data collection that Google does with its apps and services. In the event that we need Google Play Services, these will be installed in the most basic way possible: Google Services Framework and Google Play Store.
GrapheneOS promises improvements in memory encryption, with a unique key for each user of the system. It also leaves out the processes and applications that Google preinstalls to make Android more compatible with operator networks.
The system has a compatibility layer that allows users the option to Install and use the official versions of Google Playall installable from the GrapheneOS App Store itself (it is not a normal Store, it only has basic apps).
The big difference with cooked ROMs is that, in GrapheneOS, Google Play is not given any special access or system privileges. Basically, Google Play works like any other app, without being able to “get into” the important parts of the operating system. GrapheneOS does not use Google Play in the backgroundeven when installed.
Restrictions so that apps cannot monitor our network connections, baseband isolation so that WiFi and Bluetooth processes are isolated processes in the system, code audited by external security researchers… I’ll leave it here for you. the list of improvements that the system proposes on Android Stock, since it is more than extensive.
List of compatible mobiles and support with GrapheneOS
GrapheneOS has official production support for the following devices:
- Pixel 9 Pro XL
- Pixel 9 Pro
- Pixel 9
- Pixel 8a
- Pixel 8 Pro
- Pixel 8
- Google Pixel Fold
- Google Pixel Tablet
- Pixel 7a
- Pixel 7 Pro
- Pixel 7
- Pixel 6a
- Pixel 6
- Pixel 6
- Pixel 5a
As you can see, GrapheneOS Only compatible with Google PixelIts developers explain that, although many other devices may be compatible at the source code level, what they are looking for is a system with the minimum of modifications. Pixels are the devices that require the least modifications to run this AOSP-based system, and those that provide the most quality support.
GrapheneOS can only provide full security updates to a device if the OEM – the original manufacturer – releases them. In other words, with GrapheneOS we will have the same support as with Google. Seven years starting with the Pixel 8, and five years of security patches in the case of the Pixel 6 and Pixel 7.
How to install GrapheneOS
Surprisingly, installing GrapheneOS is much easier than installing any other ROM. There is no need for a custom recovery, downloading a .zip with the ROM, another with the Google Apps and praying that the system boots. Everything is done through a web installer.
We will have to unlock the bootloader, connect the Pixel to the computer, and follow the steps indicated. You do not have to touch the phone at any time – once connected – everything is done automatically. The process does not take more than 10 minutes, although at Xataka we recommend installing it only if you have a minimum of experience changing ROMs.
In case we want to return to the previous ROM, we just need to perform a sideload and we will have the same system again.
Testing GrapheneOS
GrapheneOS Setup Wizard.
GrapheneOS is minimalist to the extreme. It doesn’t even have a wallpaper. The list of apps that come installed is as follows.
- Settings
- App Store
- Archives
- Auditor
- Calculator
- Camera
- Contacts
- Gallery
- ROM Information
- Messages
- PDF Viewer
- Clock
- Phone
- Vanadium – proprietary browser based on Chromium-
Within the App Store, we can download Google services, Android Auto and Google Markup, the image editor for the Google Pixel. This app is not in the Play Store, so GrapheneOS provides us with a direct link with automatic updates. However, the gallery is from AOSP, not Google Photos.
Within the system settings, we have some interesting modifications to reinforce security. For example, in the security and privacy section, we have an “Exploit Detection” section. We also have access from the settings to the complete list of system logs, to check what is happening at any given time in our ROM.
In it, we find the option to automatically restart the phone every X hours -we can customize it as we want-, allow the mobile to charge itself when it is locked, deactivate the USB-C port -a very interesting option in case someone accesses our phone and wants to send data or inject it through the port-, option to turn off WiFi or Bluetooth automatically, etc.
We can also configure network connection checks to be performed through GrapheneOS servers, and not through Google’s, and ultimately protect the system to the maximum. As Graphene updates go hand in hand with Google’s, the latest stable version is based on Android 14.
The main drawback I’ve found with GrapheneOS is that, at least natively, we lose part of the magic of the Pixels. Goodbye to AI features, goodbye to Google Photos, goodbye to the Google camera. We can install each and every one of these Google apps, although we lose the privacy that the system gives us.
Ultimately, GrapheneOS is a system for lovers of Pure Android, and for all those who, despite being in love with Android, do not want Google’s claws to reach their phone.
Image | Xataka
Add Comment