Re: [Tails-dev] TAILS Mobile via USB or dual-boot

Delete this message

Reply to this message
Author: Nathan of Guardian
Date:  
To: tails-dev
Subject: Re: [Tails-dev] TAILS Mobile via USB or dual-boot
On 01/06/2014 01:55 PM, intrigeri wrote:
> Nathan of Guardian wrote (02 Jan 2014 18:56:22 GMT) :
>>> [...] but the question for me has been how do we match the
>>> "boot from CD/USB" aspect of TAILS.
> Frankly, I personally am much less experienced in this area than
> you, so I'm afraid I cannot help much.


Just want to announce some exciting progress made on the idea of a
TAILS Mobile edition booted from USB to an Android device. This is
just a hobby project right now, something to do in the spare time I
really don't have. However, like any interesting problem, I just can't
stop thinking about it :)

So, I have boot from USB key working on my Nexus 7 (the original 2012
wifi only edition), and am able to boot a locked down version of
Android from my Micro USB drive. This is enabled by rooting the
device, and flashing the MultiROM recovery firmware and app, which
handles the boot time switching. The point being that the main device
does not need to be modified an extraordinary amount, and can even
still run the stock firmware. It only requires root at this point.

This is all thanks to the amazing MultiROM project, of course, so I am
mostly just reporting back on testing:
https://github.com/Tasssadar/multirom

I can easily switch between the internal ROM and the USB booted ROM by
simply performing a device reboot and selecting the desired ROM to
boot from on startup, just like with a standard PC BIOS.

All user data is persisted to the USB drive, and I can setup Orbot to
autoboot with full transproxy, GnuPG for Android, ChatSecure etc. I am
going to try to setup full disk encryption on the USB booted firmware,
and will see how that goes. I have also run SecDroid on this which
effectively disables all unneeded services and turns off the ability
to install new apps.

There is a noticeable lag/freeze at times when the OS is
reading/writing from the USB, but it is not terrible. It may also be
related to the quality of the cheap noname USB flash drive I bought.
(ADATA
http://www.newegg.com/Product/Product.aspx?gclid=CIe9taeVg7wCFcFj7AodFnEAXQ&Item=N82E16820211829&nm_mc=KNC-GoogleAdwords&cm_mmc=KNC-GoogleAdwords-_-pla-_-USB+Flash+Drives-_-N82E16820211829&ef_id=UtgPqAAABF9bnY5c:20140116165816:s)

Sony has a new one coming out (micro USB OTG support) that I will test
with soon, that is also very very small physically, which matters if
you are going to have something hanging off your device's USB port.

I can also boot Ubuntu Touch from USB, but I am sad to say the state
of Ubuntu Touch is quite poor, at least running on this hardware
(which is actually fairly powerful). It is very slow and crashes quite
a bit. I will test more on the Nexus 7 2013 edition. I really need to
reach out to Ubuntu to understand their device support roadmap, and to
check out the reality of building upon their work vs. Android.

Otherwise, still investigating booting other variants of Debian on ARM
to see how easily we could "port" the existing TAILS work to a
solution like this, versus building something "similar but different"
from the ground up.

All the best!

+n