One toggle for loads of items. No choice given to users. Google is making Android more dependent on GMS 
1 Like
Advanced protection mode doesn’t completely turn off JIT. It’s just equivalent to the already available V8 optimizer toggle.
2 Likes
Android 16 has officially released as of Tuesday! Reminder that you cannot change individual settings that are modified by Advanced Protection mode.
Any Stock Pixel users who tried it out yet?
2 Likes
Seems the solution is to not enable APM. Hopefully, GrapheneOS doesn’t turn it on for us.
They aren’t, as they view it as basically features GOS already provides.
Here’s what it looks like if anyone was curious about the specifics of what it does.
Alt text
Advanced Protection helps defend against online attacks, harmful apps, insecure connections and other threats that put your data at risk.
For the strongest security and privacy, turn on device protection and also enrol your Google Account.
Device protection
Safeguard this device
Account protection
Safeguard your Google Account
Device protection features
When you turn on device protection, these safeguards are enabled and will stay on unless you turn off device protection.
Device theft
Safeguards lost, stolen or confiscated devices
Theft Detection Lock
Locks automatically when motion indicates theft
Offline Device Lock
Locks automatically when your device is offline
Inactivity reboot
Restarts device if it remains locked for 3 days
Apps
Protects against memory bugs and unsafe apps
Google Play Protect
Scans for unsafe apps and malware
Unknown apps
Blocks installation of apps from unknown sources
Memory Tagging Extension
Protects against memory corruption in supported apps
Networks
Prevents insecure connections
2G network protection (Not available on all devices)
Avoids 2G networks, which are less secure
Web
Protects against unsafe websites
Android Safe Browsing
Blocks harmful web pages
Chrome browsing
Warns you before you visit non-HTTPS sites
JavaScript protections
Turns off some advanced capabilities to reduce risk
Phone by Google
Protects against spam calls
Caller ID and spam
Identifies business and spam numbers
Spam filtering
utomatically declines known spam
Google Messages
Protects against spam and scams and warns
Spam protection
Filters spam and warns you of scams
Suspicious links
Warns you about links from unknown senders
3 Likes
These are all great but there does seem to be a glaring omission. The single most effective part of iPhone Lockdown mode from real world examples of successfully defending against advanced malware has been blocking most kinds of attachments in messages.
No hardening of message functionality seems to be in APM. Maybe Google knows more about this and that attack vector is less common in Android malware?
Seems to me that they implemented some from GrapheneOS.
Device safety and Network for example.
At least GrapheneOS has these protections since good period of time already.
At least a year 
And added some, more, security in their own apps.
What stands out to me is the spyware protection feature Intrusion Logging:
This industry-first feature securely backs up device logs in a privacy-preserving and tamper-resistant way, accessible only to the user. These logs enable a forensic analysis if a device compromise is ever suspected.
Citizen Lab reports are going to be a lot easier to write!