If you want to protect and de-Google your smartphone while still enjoying the customizability of Android, GrapheneOS can be a smart choice. Unfortunately, it’s only available on a select few devices, so you can’t install it on just any phone.
In this article, we’ll cover the current lineup of GrapheneOS-supported devices to outline your options. You’ll also learn how the OS handles security, privacy, and patches.
Before moving into the specifics, let’s have a closer look at the core idea behind GrapheneOS.
What Is GrapheneOS?
GrapheneOS is an open-source operating system based on Android, more specifically the Android Open Source Project (AOSP), and has a focus on device security and privacy enhancements. It does this by hardening the OS and app sandboxes to mitigate common vulnerabilities associated with Android phones.
Think of GrapheneOS as a fortified Android without pre-installed Google services. You can install a sandboxed Google Play version to download common apps, and they’ll run with much fewer permissions that expand your phone’s attack surface. Alternatively, if you want a fully de-Googled experience, you can use the Aurora Store to access apps.
GrapheneOS is built on open-source code, which means users can:
- Access its code publicly
- Verify all security features independently
- Make modifications to suit their needs
This kind of transparency alone gives it a major advantage over Android. Anyone can audit the code, so there’s a broad community of experts who can identify vulnerabilities and patch them quickly.
GrapheneOS offers plenty of security features you don’t get with Android and follows the latest trends of combining hardware- and software-powered protection. While this strengthens the device’s overall security, it comes at a tradeoff—the OS supports only a limited range of devices.
Which Phones Support GrapheneOS?
GrapheneOS is only available on select Pixel phones that have the hardware security components that the OS requires. This mainly includes the Titan M chip, which serves as a root of trust that manages:
- Secure boot
- Lock screen security
- Transactions within third-party apps
This doesn’t mean all Pixels with the Titan M chip are compatible with the OS. Use the table below to find the series and models that support GrapheneOS*:
*Note: Information sourced in July 2025.
GrapheneOS is also available on Pixel Fold and Pixel Tablet, which should receive regular updates alongside the supported phones listed above. By contrast, the following models are end-of-life, so they only receive minimal updates now:
- Pixel 5a (barbet)
- Pixel 5 (redfin)
- Pixel 4a (5G) (bramble)
- Pixel 4a (sunfish)
- Pixel 4 XL (coral)
- Pixel 4 (flame)
In addition to device restrictions, your cellular carrier also matters. Some vendors (like Verizon) sell Pixel devices that are carrier-locked, which means access to the SIM and the bootloader would be restricted. You won’t be able to install GrapheneOS since that requires an unlocked bootloader.
While some carriers may remove the hardware restrictions after contractual terms, others may not. That’s why you should make sure the Pixel device is fully unlockable when buying from a major carrier.
Can GrapheneOS Be Installed on Devices Other Than Google Pixel?
GrapheneOS only works on Pixel devices for now and cannot be installed on other phones through standard methods like Generic System Images (GSI). There’s no official support or dedicated GrapheneOS builds for any other brands or models, so you’ll need a Pixel to run it.
This might come as a surprise considering that GrapheneOS is open-source, which means anyone should be able to modify it and adapt it to other devices.
While this is technically possible, non-Pixel devices typically don’t meet the security standards of GrapheneOS. This means that even if you modified the code and installed the OS on another device, you’d end up with lackluster security due to hardware and software limitations like:
- Poorly implemented verified boot
- A lack of robust secure elements
- Infrequent updates
Key GrapheneOS Security Features
If you don’t mind device restrictions and are happy with a Pixel, you can leverage the many security features of GrapheneOS, most notably:
- Hardened OS and apps
- Comprehensive privacy permissions
- Advanced locking features
You can see a detailed breakdown of the security measures below.
1. Hardened OS and Apps
The main benefit of GrapheneOS is that it removes plenty of Android’s vulnerabilities through core security upgrades. These upgrades are particularly focused on:
- Minimizing the attack surface
- Mitigating exploits
- Improving sandboxing
- Strengthening memory safety
The good news is that GrapheneOS’s security measures are in the backend (for the most part), so your phone will feel like classic Android at first glance. You’ll only need to familiarize yourself with a few new options and toggles for permissions (covered in the following sections).
Besides hardening the system, GrapheneOS comes with several apps that act as secure alternatives to Android’s options or provide additional security layers. Some of the key apps are outlined in the following table:
Combined with the removal of Google’s services, these security measures minimize data collection and reduce both the common and lesser-known vulnerabilities a hacker might exploit. The result is an OS that feels familiar while actively working in the background to prevent attacks.
2. Comprehensive Privacy Permissions
To minimize unnecessary data collection, Android introduced app-level permissions that let users choose which services each app can access. GrapheneOS takes this feature further by offering additional permission toggles, such as:
- Network permission toggle: Cuts off both cellular and Wi-Fi access for a given app
- Sensor permission toggle: Allows users to disable access to motion sensors (gyroscope, accelerometer, etc.)
- Android Auto permission toggles: Let users configure the access of the Android Auto app (downloaded from the sandboxed Google Play)
GrapheneOS also doesn’t grant broad file or contact access. Instead, it lets users define Storage Scopes and Contact Scopes to include specific files or contacts they want to share with an app.
These advanced permissions are paired with a complete lack of bloatware. Besides disabling Google’s services and the corresponding apps, GrapheneOS doesn’t come with a bunch of stock apps that access different parts of the system without your knowledge or drain the phone’s performance and battery.
For additional privacy, GrapheneOS lets you create user profiles. All app data is saved within a profile, so the same app doesn’t share it between profiles. This can be useful if you’re sharing a device or juggling personal tasks and work on a single phone.
3. Advanced locking features
GrapheneOS comes with several features that prevent theft and unauthorized access to your phone. The most notable ones include:
- PIN scrambling: Randomizes the number layout on the lock screen to help ward off smudge attacks or shoulder-surfing
- Two-man unlock: A form of two-factor authentication (2FA) that requires a PIN after a successful fingerprint unlock
- Auto-reboot: Lets you specify a time of inactivity after which you want the phone to reboot to wipe the data in its memory
For emergency situations or theft threats, you can set up a so-called “duress” PIN or password. After entering it, your device will be securely wiped so that data doesn’t fall into the wrong hands. In addition to files, media, and contacts, the wipe includes any eSIM profiles stored on the phone, which can prevent number misuse and identity theft.
How Does GrapheneOS Handle Updates and Security Patches?
Regular security patches and updates are the cornerstone of device protection, so GrapheneOS pays special attention to them. The OS automatically checks for updates every six hours or so when your phone is connected to the internet and downloads any available updates in the background.
All updates are downloaded to a secondary partition and become active when you reboot the phone. Thanks to rollback protection, failed or incomplete updates won’t brick your phone—it will simply fall back to the previous stable version.
Unlike many operating systems, GrapheneOS supports incremental patches. This means that only the changed versions of the OS are downloaded instead of full packages. The result is a more streamlined and ongoing update process that saves bandwidth.
For increased safety, GrapheneOS cryptographically signs all update packages. Your device verifies each signature to ensure the update server cannot send outdated or modified OS versions. If a tempered update is detected, it will automatically be rejected.
How To Ensure Security Beyond Device-Level Protection
GrapheneOS offers impressive security features that bring greater peace of mind than regular Android. Still, no OS can completely eliminate security risks. You must also consider an attack vector that has little to do with your phone’s OS—mobile networks.
Traditional cellular carriers like AT&T and Verizon undermine secure software by leaving room for many types of network attacks, from SIM swaps to network interceptions and eavesdropping. That’s why they’ve fallen victim to countless individual attacks, as well as a massive nationwide attack known as the Salt Typhoon.
Much like you might replace a traditional OS like Android with GrapheneOS, you may also consider leaving Big Telco for a secure phone service. Paired with a hardened OS, it can drastically lower your exposure to network-level theft, interception, data exploitation via third parties, or surveillance.
If the peace of mind you get with such robust protection sounds appealing, switch to Cape.
Cape: The Mobile Carrier Built for Security and Privacy
Cape is America’s privacy-first mobile carrier that operates around a “Don’t trust us” philosophy to let you retain control and ownership of your data. Unlike Big Telco, it collects and stores minimal data, making sure sensitive information never leaves your device. After all, hackers can’t steal data that was never collected in the first place.
With Cape, we don't collect sensitive information like your name, address, or Social Security number (SSN).
In fact, you can sign up anonymously to avoid leaving any personal data and access the following security features:
- Secure authentication: Cape replaces passwords with digital signatures—24-word phrases necessary for making any notable account changes (like number porting). Nobody (including Cape) but you can access the signature, so the risk of a SIM swap is minimal.
- Mobile core: Cape runs its own mobile network. The result is a secure channel that manages all domestic or international communication and is far more resistant to network attacks.
- Enhanced signaling protection: Cape’s proprietary signaling proxy closely monitors network requests to prevent location tracking and SMS/call interceptions.
- Private payment: Cape never collects or stores billing information. Instead, it’s turned into a secure token that can’t be tied to any personal data for complete privacy and security.
- Encrypted voicemail: The contents and critical metadata of your voicemail are encrypted using your private key, which means only you can access them.
Enjoy Uncompromised Network Connectivity
Cape has the highest network density in the U.S., which helps you stay connected across the nation. You get fast, reliable network performance even in the more remote areas.
Cape keeps it simple with one all-inclusive plan that includes:
- Unlimited calls and SMS
- Unlimited 4G/5G
- Free international roaming for eligible devices and countries (with more being added as Cape’s beta evolves)
Cape offers an eSIM and comes at $99 per month, including all federal, state, and municipal taxes. This means your phone bill stays the same over time and is free of any hidden fees.
Get Started With Cape
If you want to pair GrapheneOS with a cellular service that minimizes security vulnerabilities, you can sign up for Cape by visiting cape.co/get-cape. Need a GrapheneOS compatible device? Get a new Pixel device at shop.cape.co. Cape also offers GrapheneOS installation, so you can avoid the hassle.
To provide advanced protection beyond network-level security, Cape partnered with Proton as one of the leaders in online security. Cape subscribers can get Proton Unlimited or Proton VPN Plus for only $1 for six months.
Note: We aim to update this page regularly, but for the most up-to-date information on GrapheneOS-supported devices, please refer to the official website at https://grapheneos.org/.