There are two things certain in life -- death and taxes. But you can take a bet on a third: There's almost nothing that's unhackable.
In the wake of revelations of government surveillance and a nearly endless stream of reports of hacks and data breaches, there's a reason to be paranoid. All too often hackers or spy agencies find a way into the most popular devices, but that's where Geneva-based secure phone maker Silent Circle wants to make it almost impossible.
Blackphone 2, the company's second-generation security phone, builds on the successes of its direct from Silent Circle for $799. This model is optimized for North America, with versions for the UK and the rest of the world coming soon. The US price equates to about £525 or AU$1,140.by bolstering privacy and security features, while not compromising on what many want in a modern smartphone. It's available to buy now
Anyone who's wanted to adopt a more secure approach to his or her online activity quickly encounters a harsh reality: Setting up strong security is rarely easy. Most of the best security and privacy apps and services are many years old, having stood the test of time. Pretty Good Privacy (PGP) for encrypted email, for instance, is now in its third decade. Built in a time when user experience and ease-of-use wasn't considered, nowadays they seem clunky or impossible to use.
With that in mind, the Blackphone 2 streamlines and simplifies how it wants its users -- primarily business users and the core privacy-minded consumer market -- to think about security, making it almost immediately more appealing than most other security-focused products.
Is this a hack-proof phone? It's not and it doesn't pretend to be, said Javier Aguera, Silent Circle chief scientist, at a meeting in London. But by patching up the conventional ways that a hacker (or government spy) can attack, in securing your data the Blackphone 2 goes far beyond any other smartphone on the market today.
Editors' note: We'll be finalizing this review with ratings in the near future, once we finish battery testing.
Secure to the core
By far the most important feature of the phone is its security. The Blackphone 2 acts like any other Android phone, but with a twist. It runs Silent OS, an enhanced version of theoperating system, which adds a number of additional security features to the device. (Silent OS is the renamed successor to the "PrivatOS" used on the previous Blackphone.)
This second-generation phone also includes for the first time Google's own services, like Drive, Gmail, Photos and even the Play app store -- meaning you can download all manner of mainstream third-party apps. That might have some people scratching their heads. An unfortunate truth is that many of the apps and services you use are not working in your favor, by containing security flaws or sucking up your valuable data to better serve ads. So how can Google's services, which collect vast sums of data from its users, coexist with a privacy-based phone?
The key to the Blackphone 2's success is a security umbrella feature, which combines a series of granular controls without compromising the overall experience.
Take the new (and aptly named) Security Center, which sits in the bottom-right of the home screen, ready to take orders from you -- rather than individual apps calling the tune. The goal of this central port of call is twofold. First, it helps you separate and compartmentalize apps and services. Secondly, it offers an overarching and comprehensive set of controls over your phone's features and functionality, superseding all other options buried deep in the phone's settings.
There's also the new Spaces feature, which allows you to build isolated, secure areas. Similar to setting up a new user profile on a computer, the Blackphone 2 has a bevy of finely tuned options that customize the space's apps, settings and even networks to connect to, and the space's lock-screen passcodes. The feature cuts off your data from other spaces, meaning if an app (which all too often can come with backdoors or malware) is compromised, it can't get access to anything else outside that space.
That means you can have a dedicated space for that sketchy game you downloaded and make sure it doesn't touch those mission-critical apps, such as your bank, mobile wallets or email accounts. If you're particularly averse to Google's data collection, you can create a walled-off space away from the stock Android or Google apps. Think of it as the incognito mode in the Chrome browser extended to other apps as well.
Without a user manual or step-by-step instructions, it took a while to understand the full potential of these spaces. It may take some experimentation and fiddling, but it's hard to misstep or get lost, thanks to the general simplicity of the spaces' design. You can easily switch spaces from the pull-down menu, or even the lock screen.
There's a set standard in Silent Circle's books for what default security and privacy should look like, but the level of customization and choice is refreshing. Silent Phone, the company's flagship encrypted voice- and video-calling and messaging service, comes preloaded on the device. The stock Android phone and messaging apps remain on the home screen, giving you the option to make unencrypted phone calls or send a standard text message.
The Blackphone 2 runs apps as any other Android phone. But apps remain a persistent problem. Though checked for malware and nefarious nasties, they stand as one of the biggest issues for Android devices (and other platforms, to be fair) to allow hackers in. All too often they demand access to your personal data, even when they're not apparently necessary for the app to function. Refuse, and the app may not work. The Blackphone 2 has a trick up its sleeve, where it intercepts the app's request for personal user data and blocks access to it, allowing you to then decide based on your privacy settings.
It isn't just what you see that's keeping your data secure; it's also what you don't see. Blackphone 2 has its memory encrypted from the very first time to turn it on, making it almost impossible to descramble its contents without the correct passcode. (iPhones have a similar encryption feature, but on the Android side, only Google's Nexus devices are encrypted by default.)