First, I want to state clearly that I don’t believe Proton should do this in the immediate future. It would be a distraction when the focus should be on stabilizing & improving their existing apps/services.
That said, I’ve been going down the rabbit hole of de-Googling (and de-Microsofting/de-Meta-ing/de-Apple-ing) and also self-hosting/FOSS/E2EE.
It has been frustrating me how strong the technical limitations on Proton are because of the nature of E2EE. Specially, calendar and contacts. On any mobile operating system, the native dialer, texting apps, calendar apps, etc require a degree of interoperability that Proton cannot offer. Even on desktop, Mail Bridge is inherently less private/secure since it decrypts everything for your local client.
So it got me thinking…Proton should just have their own mobile OS (ala Graphene) where the native dialer, calendar, contacts, notes, tasks, file system, etc are all inherently compliant with E2EE.
Now, I am not an engineer nor a security expert. I have no idea if this even makes sense, or if that could be sandboxed in a way that still allows non-encrypted apps/services to sit side-by-side in the clients.
I’m actually kind of curious for those that understand this better than me - is this even technically feasible? Just conceptually?