mirror of
https://github.com/privacyguides/privacyguides.org.git
synced 2024-12-30 01:46:29 -05:00
806b0b97d7
Co-authored-by: Daniel Gray <dng@disroot.org>
26 lines
1.9 KiB
YAML
26 lines
1.9 KiB
YAML
title: Auditor
|
|
type: Recommendation
|
|
logo: /assets/img/android/auditor.svg
|
|
description: |
|
|
**Auditor** is an app which leverages hardware security features to provide device integrity monitoring for [supported devices](https://attestation.app/about#device-support). It currently works with GrapheneOS and the stock operating system. It performs attestation and intrusion detection by:
|
|
|
|
* Using a [Trust On First Use (TOFU)](https://en.wikipedia.org/wiki/Trust_on_first_use) model between an *auditor* and *auditee*, the pair establish a private key in the [hardware-backed keystore](https://source.android.com/security/keystore/) of the *Auditor*.
|
|
* The *auditor* can either be another instance of the Auditor app or the [Remote Attestation Service](https://attestation.app).
|
|
* The *auditor* records the current state and configuration of the *auditee*.
|
|
* Should tampering with the operating system of the *auditee* after the pairing is complete, the auditor will be aware of the change in the device state and configurations.
|
|
* The user will be alerted to the change.
|
|
|
|
No personally identifiable information is submitted to the attestation service. We recommend that you sign up with an anonymous account and enable remote attestation for continuous monitoring.
|
|
|
|
If your [threat model](/threat-modeling/) requires privacy you could consider using Orbot or a VPN to hide your IP address from the attestation service.
|
|
|
|
To make sure that your hardware and operating system is genuine, [perform local attestation](https://grapheneos.org/install/web#verifying-installation) immediately after the device has been installed and prior to any internet connection.
|
|
|
|
website: 'https://attestation.app'
|
|
privacy_policy: 'https://attestation.app/privacy-policy'
|
|
downloads:
|
|
- icon: fab fa-google-play
|
|
url: 'https://play.google.com/store/apps/details?id=app.attestation.auditor'
|
|
- icon: fab fa-github
|
|
url: 'https://github.com/GrapheneOS/Auditor'
|