Felicitas Pojtinger 🌅9h ago

https://bmi.usercontent.opencode.de/eudi-wallet/wallet-development-documentation-public/latest/architecture-concept/06-mobile-devices/02-mdvm/

So, it turns out the German implementation of eIDAS (electronic ID wallet for e.g. age attestation) will require an Apple/Google account to function

Absolutely pathetic

Mobile Device Vulnerability Management Concept - German National EUDI Wallet: Architecture Documentation

Show threadArjen P. de Vries Timmers 🕊️9h ago
@pojntfx that would be terrible design, completely outrageous even. I'm not enough of a specialist to grasp that document fully, could you be so kind to teach us how you did conclude that google/apple would be a *requirement* from this document?
Show threadFelicitas Pojtinger 🌅9h ago
@arjen SafetyNet checks only pass on devices with unchanged, factory-sealed, non-unlockable firmware. Google has an allowlist of devices that pass that test. The same remote attestation mechanism is also used to block downloading the app through anything other than the Google Play Store, which you need a Google Account for. And you can't use Google if you're on the US sanction list (see e.g. the ICC prosecuter case). Using any open source OS of any type is also completely impossible.
Show threadAnneH
@pojntfx @arjen Oh so it's a no for degoogled phones then?
12:31pmWeb