GrapheneOSWe strongly oppose the Unified Attestation initiative and call for app developers supporting privacy, security and freedom on mobile to avoid it. Companies selling phones should not be deciding which operating systems people are allowed to use for apps.
Daniel@GrapheneOS the system is open source, what stop you to implement it and even better contributing to it to improve security?
Because this system is a very good idea to reinsure the banking company and European Union and it create a viable alternative to the Play Integrity.
Your approach to just say the security rely on the user didn't convince any big firm as they are legally still responsible in case of issue and the law on that is still protecting consumers.
The responsibility will remains on the apps for consumer protection so we need an alternative to make it that way and Graphene OS is not providing anything for that.
Because this system is a very good idea to reinsure the banking company and European Union and it create a viable alternative to the Play Integrity.
Your approach to just say the security rely on the user didn't convince any big firm as they are legally still responsible in case of issue and the law on that is still protecting consumers.
The responsibility will remains on the apps for consumer protection so we need an alternative to make it that way and Graphene OS is not providing anything for that.
HybridStaticAnimateThe source model doesnt make the approach of the system sensible. Its approach is already a nonstarter and forking it just means convincing app devs to employ a *second* play integrity clone. The proper approach is for there to be no middleman between services and users, by using the generic attestation API. Play integrity is anti competitive and anything mimicking its approach is similarly anti competitive.
GOSs approach to whitelist OSs with the generic attestation API (that GOS fully supports) has worked and will likely keep working as more pressure is applied. A middleman is just harmful to the user and to the service.