February 22, 2017
Most people get their Android apps from Google Play. It is usually the simplest and most secure option for them. But there are also many people who do …
January 26, 2017
The Guardian Project team spends a lot of time thinking about users. In our work we focus on easy-to-use applications for users in high-risk …
July 31, 2016
Following up on some privacy leaks that we looked into a while back, there are now official Debian Tor Onion Services for getting software packages …
June 2, 2016
App stores can work well without any tracking at all Attackers are increasingly seeing app stores as a prime attack vector, whether it is aimed at the …
January 12, 2016
Our mobile devices do so many things for us, making it easy to communicate with people in all manners while giving us access to all sorts of …
December 29, 2015
It is time to update to a stronger signing key for your Android app! The old default RSA 1024-bit key is weak and officially deprecated. What? The …
September 21, 2015
We have been on a kick recently with making our build process support “reproducible builds” aka “deterministic builds”. What is this reproducible …
June 2, 2015
One core piece of our approach is thinking about very high risk situations, like Ai Weiwei or Edward Snowden, then making the tools for operating …
February 24, 2015
I recently received a very interesting phishing email directed at developers with apps in Google Play. One open question is, how targeted it was: did …
February 11, 2015
With F-Droid, we have been working towards getting a complete app distribution channel that is able to reproducibly build each Android app from …