[mikewarot]

>Let's move to OS. Well, there's lot of security stuff in any OS. Process isolation, namespace isolation, encrypted storage.

How can the user run some random application and not have it wipe out their OS? Can they plug in a random USB stick safely?

There's no real security in the OS part of the stack, but lots of security theater.

[HeatrayEnjoyer]

What app on my phone could delete the OS? It isn't even possible. It can't even delete normal user files without explicit file access permission.

[mikewarot]

Both iOS and Android have had zero day exploits announced this year, what makes you think they've all been found?

[HeatrayEnjoyer]

Zero days capable of nuking the OS are not going to be found in random apps or malware. Anyone with that kind of ability will be using it for nation-state targeted intelligence ops, not wasting it on random individuals.

[vilunov]

Who runs container orchestrators on phones?