Yes, you heard me right. Desktop operating systems have been constantly criticised for being inferior to iOS and Android security-wise, because they still have an outdated security model as a foundation, and they don’t make as much use of modern exploit mitigations. Windows and macOS have been making some progress on remedying their problems, but it’s a very slow process as these issues stem from fundamental weaknesses in the core design of these systems.
https://madaidans-insecurities.github.io/security-privacy-advice.html#desktop-os
That got me thinking - if Android (AOSP), being a secure OS, and being open-source, were ported to PC, it might solve a great deal of issues for a daily driver. Obviously it’ll still have hurdles to clear, but if it were to be done, we’d finally see a secure desktop OS by design. Besides, even GrapheneOS started from Android because it provides such a strong foundation for a strong operating system.
Now, Android being a mobile system cannot support a lot of desktop functionality, but again, it doesn’t need to for every type of user.
The average PC user can do most of the tasks they do on their PC on Android or iOS anyway, like browsing the web, using messaging and communication software, purchasing things and online banking, etc.
It won’t be able to do heavy-duty industry work like programming or running CAD software or playing video games. But it doesn’t need to.
Chromebooks sell as cheap laptops with basic functionality - an Android PC won’t be too different.
Besides, for larger landscape-oriented screens, Android already has support for tablets. Considering it also has built-in keyboard and mouse support by default, this would be possible to use with the ecosystem of apps on Android.
I started looking for attempts to port Android to PC (not counting proprietary emulators like Bluestacks) and found only one - BlissOS, a fork of the now largely inactive Android-x86. However, it sadly doesn’t seem to have a focus on security, and provides rooted builds by default, which is a security risk. Still, their work is very impressive regardless, and considering that it’s open-source, provides a good starting point.
https://madaidans-insecurities.github.io/android.html#rooting
This post is meant to start some discourse and get the community’s thoughts on such an approach - would it be worth trying to obtain a GrapheneOS-like hardened Android system but for PCs so that security on desktop would improve? It would sidestep a lot of the issues with building a “hardened” Linux distro that will ultimately be incompatible with the lack of security the ecosystem provides by default.
It won’t have the same hardware-based protections that iOS and GrapheneOS provide, but it’s a start.
P.S. Porting ChromiumOS occurred to me too, but it turns out running Android apps on it requires you to use ChromeOS, not ChromiumOS. If you stick to ChromiumOS, the software library will be very limited, far less than an Android fork.