Ciarán2d ago

The closing date for responses to the public consultation on Ireland's Digital Wallet is today at 5pm.
I would strongly encourage anyone who has ties to Ireland to engage. #mastodaoine
Its only 5 minutes.

https://www.gov.ie/en/department-of-public-expenditure-infrastructure-public-service-reform-and-digitalisation/consultations/consultation-on-the-government-digital-wallet/

If you are a person who uses alternative android distribution - #GrapheneOS, #murena (/e/), #iode, #lineageos

"How the Government Digital Wallet is kept secure
...
and will not run on phones that have been jailbroken or rooted."
https://www.gov.ie/en/department-of-public-expenditure-infrastructure-public-service-reform-and-digitalisation/publications/government-digital-wallet-your-questions-answered/
[1/4]

Show threadScanner2d ago

@coraven Unified Attestation is another closed ecosystem. Volla, Murena and iodé sell unsafe products, neglect important patches and protections, and mislead users with inaccurate security claims. It mainly gives them an unfair advantage while pretending to improve security. Apps need verified secure devices, not authorised by niche companies.

Hardware-based attestation has valid uses without control by any organization.

Show threadCiarán

@a53bdb the fact that there is an alternative is a much better situation than just one defacto standard. This is of value.

This consultation is an opportunity for people to tell the 'powers that be' that they want to keep their choice over the devices they use day-to-day.

These operating systems are kept niche largely due to fear and uncertainty with banking apps. If government apps also slam the door on these, they will drive them to become less niche and more dead.

Progress over perfection.

Jun 24 at 8:44amWeb
Show threadScanner2d ago
@coraven I agree with most of what you said, but Unified Attestation does not represent real progress, and it will be very difficult to convince application developers to adopt it. Without adoption, the effort will be wasted. Hardware-based attestation is also far from perfect, but the focus of this consultation could simply shift to that approach, since it’s already usable now. https://x.com/GrapheneOS/status/2033925685568250119
GrapheneOS (@GrapheneOS) on X

@hello_volla Android provides a standard hardware attestation system with support for alternate operating systems via allowing their verified boot key fingerprints. It's mainly used with Google's root of trust and remote key provisioning service but the API supports alternative roots of

X (formerly Twitter)