Unfortunately I’ll have to pre-empt and call out that I am unable to use ADP.
I happily enjoy my Graphene phone and treat it as a device I understand and am content with using as a ‘mobile computer’. Happy to keep using this as is for a number of apps whilst they’re all still available to sideload lol
As I see it, an iPhone (likely 17+ for memory tagging) is a device I’d be happy to have for ‘real identity’ things; banking, apple pay, travel/navigation apps and the fallback of iMessage seems appropriate for when signal is out of the question and so on. This is to replace a non-graphene pixel that I use for these purposes otherwise, so it is no doubt an upgrade in my mind.
I’m a bit out of the loop with setting one up but given that I can’t use ADP, I’m content to avoid icloud back ups and other services, though I’d appreciate some input on the pros/cons of “including it”; reason being for private relay: if I’m able to anyway. I haven’t owned an iphone this decade so would appreciate any heads up on how all of these play together and any interactions for all of this. I am aware of lockdown mode as well.
As for other non e2ee services not covered, I treat these as largely covered. I’m aware of the iCloud data security overview - Apple Support list for sdp and will actively minimise services where apple hold the keys, remaining stuff already lives on my graphene device with appropriate threat model for that data.
I actually assume this is a somewhat common arrangement for people in multi phone set ups, so hoping people here have plenty to chip in with
Tbh im not a two-phone person, but I’ll tell you how I have my iPhone set up.
I’ve followed most of PG’s iOS overview and consulted The New Oil and Bazzell’s recommendations. Use as many of those as you fancy live with.
If you’re already using GrapheneOS, there’s cloud applications to use, which I’m sure you know of, for syncing notes (Notesnook), calendar (Tuta/Proton) and the like.
iPhone is nice for the reasons you list: Apple Pay, iMessage fallback, etc.
Why can’t you use ADP? If you use iCloud at all, highly recommend.
I like iCloud backups just in case, but you fan manually backup to a Mac or Windows.
Tbh just don’t sign into as many things as you can live without, see the forum and site here on settings and how others have shared their setups. iPhones are simple for a single device once you set them up. Eventually I’ll go all-in on GrapheneOS, but for now it’s pretty ok
Is there anything specific you’re looking for or just general thoughts?
hey I use both of the similar things just with different purpose. the only difference is I guess Im not in the UK but I don’t use ADP (at least for me it is not needed).
Have you first checked if your banking apps works on GrapheneOS? and my second question becomes do you reslly value using things like google wallet or apple pay or is it more convenient to use your existing contactless payment card and if you want to improve security with an RFID protected wallet?
what travel apps if I may ask? doss it work on Graphene? If so no need to carry an iPhone
Finally why not tell iPhone users to bother turning on RCS? there’s no new app just if my understanding is correct, ask the carrier and done.
for me the iPhone is the email, seperate comms, passkey and mobile gaming device and it does fullfil this purpose better while my other phone is for the other basic things (though after the revelation of GameHub I have been considering switching to redmagic for the gaming related things)
w.r.t Graphene banking - yes, I have had luck using this in the past but I have two concerns:
being locked out one day after an update to an account I need access to,
having to juggle aurora store or having a signed in google account for play store.
So, given (2), I do have the second benefit of being able to get rid of my secondary play store profile at the moment as well. For (1), I hope this situation stabilises and becomes a nonissue in future but I just can’t trust that for time being personally. Apple pay is a superior technical solution to carrying my cards around as well, so I can carry those buried away in pockets as the backup option for if my phone’s dead.
For travel, I can usually get around with qr codes (and prioritise having those backed up onto my graphene device) but appreciate it being a bit more streamlined with their respective apps/PWAs. In any case, given that I’m travelling as myself (lol) and paying for the travel with identifying info, there’s no general benefit to separate this stuff onto graphene.
Ah yeah TNO + MB are good shouts for ios guides, I guess this is sort of what I was after. I’m definitely interested in hearing how other people might use this same dual-phone model and if they can pick apart anything with how I am generally modelling their usage that I’m over/under-thinking.
Realistically I’d actually like to use the iphone with no real intention to cross streams with the same ‘cloud apps’ or other foss apps etc. It’d strictly be for banking and photography (maybe here I’ll allow immich/ente for backing up pics).
I guess my questions on iCloud surround how it really behaves if I wanted to use private relay or if including it is probably not worth it in my threat model at all. Admittedly I’ve been a bit lazy here and not thought too hard or looked for resources myself since I still don’t have the device, but was hoping if someone else has done similar they’d drop some breadcrumbs
ADP is only relevant at all if you use iCloud. You can just not use it. Personally I just use iMazing to make scheduled backups of my phone (I’m sure one can do this with imobiledevice2 and cron too, I just rather pay 40 bucks than deal with that shit) and not use any iCloud backup functionalities. I do use Mail but that’d be unencrypted with ADP too anyway, and Drive for sharing files with public links which would just not work with ADP instead.
lol
