Active Topics
-
The N900 is now 15 years old! (7)
to Nokia N900 by Danct12 - 1 day, 1 hr ago -
Sailfish OS for the Motorola Moto G7 Power (XT1955-5) - (ocean) (4)
to SailfishOS by Maemish - 1 day, 21 hrs ago -
F(x)tec Pro1x (QWERTY) for sale (0)
to Buy & Sell by aln00000 - 4 days, 6 hrs ago - more...
| The Following User Says Thank You to Feathers McGraw For This Useful Post: | ||
|
2017-09-26
, 20:16
|
|
Posts: 1,548 |
Thanked: 7,510 times |
Joined on Apr 2010
@ Czech Republic
|
#82
|
Originally Posted by Feathers McGraw
Well, it can mean a lot of things. AFAIK most current smarpthones have an application CPU where the "normal" OS lives (Sailfish OS/Android/iOS/etc.) and a baseband with its own CPU that runs some totally proprietary RTOS no one really knows much about and which handles all the communication with the cellular network (calling, SMS, data, etc.).
When did it stop being such a chode? Looks much better now, they must have done some "redesign"
Edit: also, that comparison chart says that pureos "Separates CPU from Cellular Baseband" whereas iOS and Android don't... but that's a hardware feature?!
These these CPUs generally communicate with some sort of IPC - for example if the user uses the phone app to start a call, the application CPU tells the baseband CPU to initiate it.
How tightly coupled these two CPUs are can make quite a difference, as you can generally tell what the application CPU is running while the baseband CPU is basically running an unauditable binary blob sitting on an always online wireless connection. IIRC in some cases it even starts first during boot and/or can manipulate content of the main memory without the application CPU knowing about it. Fun and games!
For that reason the Neo 900 project went the way of having a separate baseband module that communicates with the application CPU via clearly defined and easily to audit channel & which can be robustly disabled (by turning it's power supply off).
So it could be the Librem Phone projects wants to do the same thing as Neo 900 (fully separate baseband module). Or they just rephrase the status quo (individual application/baseband CPUs with unclear separation) in a positive way - and I would not discount that given that the whole project seems to be a bit marketing heavy and fact light.
__________________
modRana: a flexible GPS navigation system
Mieru: a flexible manga and comic book reader
Universal Components - a solution for native looking yet component set independent QML appliactions (QtQuick Controls 2 & Silica supported as backends)
modRana: a flexible GPS navigation system
Mieru: a flexible manga and comic book reader
Universal Components - a solution for native looking yet component set independent QML appliactions (QtQuick Controls 2 & Silica supported as backends)
| The Following 8 Users Say Thank You to MartinK For This Useful Post: | ||
|
|
2017-09-27
, 11:07
|
|
Posts: 3,464 |
Thanked: 5,107 times |
Joined on Feb 2010
@ Gothenburg in Sweden
|
#83
|
What we know is the arm choosed has no cellular built in The core sock so they have to use Telia/ublox or similar all those modules has almost alwaus an interna closed firmware.
I doubt even neo900 is full Open modem firmware....
Last edited by mikecomputing; 2017-09-27 at 20:19.
I doubt even neo900 is full Open modem firmware....
__________________
Keep safe and healthy
Keep safe and healthy
Last edited by mikecomputing; 2017-09-27 at 20:19.
 |
|
2017-09-27
, 11:48
|
|
Posts: 1,296 |
Thanked: 1,773 times |
Joined on Aug 2009
@ Budapest, Hungary
|
#84
|
Cellular modems are so complicated that they require their own ARM processor. Whatever code runs on this core is closed-source and proprietary.
In order to improve general system performance, some SoC vendors chose to include the modem in the SoC itself. So basically there is yet another ARM core in the SoC which is dedicated to running the cellular modem. This core runs a closed-source blob and is unavailable to the operating system.
This thight integration raises some concerns for some people:
Whether or not these concerns are valid (or even feasible technically) or not is anybody's guess. I'm not saying you should go paranoid about this, but these are the main concerns that are raised with regards to this.
So these people who are designing "privacy-protecting" devices generally use a SoC with a non-integrated modem, which allows greater control over the modem in case it becomes "malicious". So they sacrifice some PCB area and make some trade-off to give you this additional control.
EDIT 1: practically all modern smartphones have a SoC which has the modem built-in. Not sury why Purism sells this as a software feature, though, when clearly it isn't.
EDIT 2: according to some trivia, Nokia figured out how to run the modem and their OS on the same one ARM core, which is why their low-end phones were so cheap (because they needed one fewer CPU core at a time when this meant saving a significant cost).
Last edited by Venemo; 2017-09-27 at 11:55.
In order to improve general system performance, some SoC vendors chose to include the modem in the SoC itself. So basically there is yet another ARM core in the SoC which is dedicated to running the cellular modem. This core runs a closed-source blob and is unavailable to the operating system.
This thight integration raises some concerns for some people:
- the audio signal is routed directly into the modem, without any intervention from the main CPU, which leads to some people believing that the modem can always "listen in" to you, even when you are not in a phone call
- the main processor communicates with the modem's ARM core via shared memory, so the modem can access the main memory, so some people believe that the modem can "steal your data" by copying arbitrary stuff from your RAM
- since the modem is on the same chip and powered via the same power pins, some people also think that there is no reliable way to power down the modem entirely, so it can "spy" on you even when you think it's in offline mode
- since the modem runs closed-source software, some people believe that it is of bad quality and suspect to "backdoors" (and is not auditable by independent researchers)
Whether or not these concerns are valid (or even feasible technically) or not is anybody's guess. I'm not saying you should go paranoid about this, but these are the main concerns that are raised with regards to this.
So these people who are designing "privacy-protecting" devices generally use a SoC with a non-integrated modem, which allows greater control over the modem in case it becomes "malicious". So they sacrifice some PCB area and make some trade-off to give you this additional control.
EDIT 1: practically all modern smartphones have a SoC which has the modem built-in. Not sury why Purism sells this as a software feature, though, when clearly it isn't.
EDIT 2: according to some trivia, Nokia figured out how to run the modem and their OS on the same one ARM core, which is why their low-end phones were so cheap (because they needed one fewer CPU core at a time when this meant saving a significant cost).
__________________
You should follow me on Twitter!
Apps: Puzzle Master, IRC Chatter for Harmattan, IRC for Sailfish
You should follow me on Twitter!
Apps: Puzzle Master, IRC Chatter for Harmattan, IRC for Sailfish
Last edited by Venemo; 2017-09-27 at 11:55.
 |
|
2017-09-27
, 12:32
|
|
Posts: 654 |
Thanked: 2,368 times |
Joined on Jul 2014
@ UK
|
#85
|
Originally Posted by MartinK
Yeah I get that, and it's one of the reasons why I was interested in the neo900, but isn't the problem that the baseband CPU can read/shares memory with the application CPU. Separating them requires separate memory for the two CPUs... which is a hardware feature, that you can't just implement in an OS.
Well, it can mean a lot of things. AFAIK most current smarpthones have an application CPU where the "normal" OS lives (Sailfish OS/Android/iOS/etc.) and a baseband with its own CPU that runs some totally proprietary RTOS no one really knows much about and which handles all the communication with the cellular network (calling, SMS, data, etc.).
These these CPUs generally communicate with some sort of IPC - for example if the user uses the phone app to start a call, the application CPU tells the baseband CPU to initiate it.
How tightly coupled these two CPUs are can make quite a difference, as you can generally tell what the application CPU is running while the baseband CPU is basically running an unauditable binary blob sitting on an always online wireless connection. IIRC in some cases it even starts first during boot and/or can manipulate content of the main memory without the application CPU knowing about it. Fun and games!
For that reason the Neo 900 project went the way of having a separate baseband module that communicates with the application CPU via clearly defined and easily to audit channel & which can be robustly disabled (by turning it's power supply off).
So it could be the Librem Phone projects wants to do the same thing as Neo 900 (fully separate baseband module). Or they just rephrase the status quo (individual application/baseband CPUs with unclear separation) in a positive way - and I would not discount that given that the whole project seems to be a bit marketing heavy and fact light.
From http://neo900.org/faq#floss
Unlike some other smartphones do, Neo900 won't share system RAM with the modem and system CPU will always have full control over the microphone signal sent to the modem. You can think of it as a USB dongle connected to the PC, with you in full control over the drivers, with a virtual LED to show any modem activity
 |
|
2017-09-27
, 14:50
|
|
Posts: 634 |
Thanked: 3,266 times |
Joined on May 2010
@ Colombia
|
#86
|
I wouldn't advertise it as a feature at all. Separating the modem from the SoC doesn't guarantee anything. They claim that the Librem 5 is the phone that "focuses on security by design and privacy protection by default" but in reality the Neo900, with its sandboxed modem design, would be by far the better option in this category. There's so much to like about the Librem 5 but their false claims are annoying and don't inspire me with any confidence that they are competent enough to deliver.
__________________
DebiaN900 - Native Debian on the N900. Deprecated in favour of Maemo Leste.
Maemo Leste for N950 and N9 (currently broken).
Devuan for N950 and N9.
Mobile devices with mainline Linux support - Help needed with documentation.
"Those who do not understand Unix are condemned to reinvent it, poorly." - Henry Spencer
Maemo Leste for N950 and N9 (currently broken).
Devuan for N950 and N9.
Mobile devices with mainline Linux support - Help needed with documentation.
"Those who do not understand Unix are condemned to reinvent it, poorly." - Henry Spencer
| The Following 4 Users Say Thank You to wicket For This Useful Post: | ||
|
|
2017-09-27
, 17:29
|
|
Posts: 1,296 |
Thanked: 1,773 times |
Joined on Aug 2009
@ Budapest, Hungary
|
#87
|
Originally Posted by wicket
I think the Librem 5 will employ the same idea as the Neo900
I wouldn't advertise it as a feature at all. Separating the modem from the SoC doesn't guarantee anything. They claim that the Librem 5 is the phone that "focuses on security by design and privacy protection by default" but in reality the Neo900, with its sandboxed modem design, would be by far the better option in this category. There's so much to like about the Librem 5 but their false claims are annoying and don't inspire me with any confidence that they are competent enough to deliver.
__________________
You should follow me on Twitter!
Apps: Puzzle Master, IRC Chatter for Harmattan, IRC for Sailfish
You should follow me on Twitter!
Apps: Puzzle Master, IRC Chatter for Harmattan, IRC for Sailfish
| The Following 4 Users Say Thank You to Venemo For This Useful Post: | ||
|
|
2017-09-27
, 21:34
|
|
Posts: 339 |
Thanked: 1,623 times |
Joined on Oct 2013
@ France
|
#88
|
Originally Posted by wicket
Do you have details on the librem5 implementation to back those claims ?
They claim that the Librem 5 is the phone that "focuses on security by design and privacy protection by default" but in reality the Neo900, with its sandboxed modem design, would be by far the better option in this category.
I didn't find much on this, except that the iMx6/8 doesn't exist with integrated baseband, so it will by design be separated. I don't think the memory bus of the iMx6/8 can be shared (in the idea that there are 2 chips reading/writing on the same RAM), so it would need its own memory. At this point, we are close to the Neo900 design, and the attack surface reduced a lot compared to standard phones.
The remaining things not clear is if they went with a hardware way to monitor and power down the baseband, and how the audio input is connected to it ?
| The Following 4 Users Say Thank You to Zeta For This Useful Post: | ||
|
|
2017-09-28
, 02:28
|
|
Posts: 634 |
Thanked: 3,266 times |
Joined on May 2010
@ Colombia
|
#89
|
Originally Posted by Venemo
I hope so, but they don't mention anything about a sandboxing and monitoring the baseband on their campaign. If they are going to do this, it's kind of a big feature to leave out of the product description.
I think the Librem 5 will employ the same idea as the Neo900
Originally Posted by Zeta
The Neo900 design documents and Git repos are all shared publicly.
Do you have details on the librem5 implementation to back those claims ?
I didn't find much on this, except that the iMx6/8 doesn't exist with integrated baseband, so it will by design be separated. I don't think the memory bus of the iMx6/8 can be shared (in the idea that there are 2 chips reading/writing on the same RAM), so it would need its own memory. At this point, we are close to the Neo900 design, and the attack surface reduced a lot compared to standard phones.
The remaining things not clear is if they went with a hardware way to monitor and power down the baseband, and how the audio input is connected to it ?
The baseband is a big proprietary black box. We have no idea what goes on inside of it. If privacy was my top concern, I'd feel much safer with a device that has a sandboxed baseband than one that doesn't.
__________________
DebiaN900 - Native Debian on the N900. Deprecated in favour of Maemo Leste.
Maemo Leste for N950 and N9 (currently broken).
Devuan for N950 and N9.
Mobile devices with mainline Linux support - Help needed with documentation.
"Those who do not understand Unix are condemned to reinvent it, poorly." - Henry Spencer
Maemo Leste for N950 and N9 (currently broken).
Devuan for N950 and N9.
Mobile devices with mainline Linux support - Help needed with documentation.
"Those who do not understand Unix are condemned to reinvent it, poorly." - Henry Spencer
| The Following 5 Users Say Thank You to wicket For This Useful Post: | ||
|
|
2017-09-28
, 09:03
|
|
Posts: 1,296 |
Thanked: 1,773 times |
Joined on Aug 2009
@ Budapest, Hungary
|
#90
|
Originally Posted by wicket
The "sandbox" means:
The baseband is a big proprietary black box. We have no idea what goes on inside of it. If privacy was my top concern, I'd feel much safer with a device that has a sandboxed baseband than one that doesn't.
- The modem does not access system memory
- Power input of the modem is controlled by the application processor
- Audio input of the modem is controlled by the application processor
The above points are effective solved by having a separate module or chip for the modem and only communicating with it via a simple serial port. Plus, adding a switch to its power supply and audio.
However, some people are even more paranoid and add an RF switch between the modem and the antenna, "just to be sure".
Not sure how far the Neo900 and the Purism go with this, though. (Neo900 had a detailed doc somewhere but I can't find it now.)
__________________
You should follow me on Twitter!
Apps: Puzzle Master, IRC Chatter for Harmattan, IRC for Sailfish
You should follow me on Twitter!
Apps: Puzzle Master, IRC Chatter for Harmattan, IRC for Sailfish
Edit: also, that comparison chart says that pureos "Separates CPU from Cellular Baseband" whereas iOS and Android don't... but that's a hardware feature?!
Last edited by Feathers McGraw; 2017-09-26 at 19:45.