JoshTriplett

@[email protected]
0 Followers
0 Following
6 Posts
Email: [email protected]

Fediverse: https://social.joshtriplett.org/@josh

Twitter: @josh_triplett

GitHub Sponsors: https://github.com/sponsors/joshtriplett/

Homepage: https://joshtriplett.org

FOSS developer. Rust Project developer on the language, library, and Cargo teams.
This account is a replica from Hacker News. Its author can't see your replies. If you find this service useful, please consider supporting us via our Patreon.

Officialhttps://
Support this servicehttps://www.patreon.com/birddotmakeup
Show threadJoshTriplettMar 20

The incorrect party line is that allowing rooting and running your own OS and apps is insecure.

Meanwhile, those same banks have websites.

Show threadJoshTriplettMar 20
You are uncritically repeating the party line from banks who claim it is necessary for security, without giving any rationale or supporting evidence, and coupling it with an insult.
Show threadJoshTriplettMar 20

The current situation is that banks regularly require the use of an unmodified, unrooted Android or iOS device, which reinforces the duopoly and makes it impossible for anyone to compete. (Even emulating Android doesn't help, as emulated Android won't pass the checks banks do to make sure you don't have control of your device.)

That situation is not acceptable. Got something better than insults like "pretty dumb" to say about how to resolve this abuse of the two-player oligopoly in the mobile phone market?

Show threadJoshTriplettMar 20
This would be less of an issue if there were an explicit regulatory mandate saying "businesses larger than X may not limit any consumer capabilities for interacting with their business in such a way that it can only be accessed by proprietary applications running on locked-down systems that a user cannot modify, control, or install their own software on. Offering to have a person handle that functionality on their behalf does not constitute an alternative to functionality made available via such an application". (With appropriate clear definitions for "locked-down", and other appropriate elaborations.)
Show threadJoshTriplettMar 20
Sounds like backlash needs to continue until it's clear that that isn't acceptable either.
Show threadJoshTriplettMar 20
And when you do that, you lose access to your bank, because bank apps routinely refuse to run on devices that leave the user in control (e.g. unlocked bootloader, rooted phone). Graphene and similar would be a much more acceptable solution if remote attestation of a locked bootloader were banned.