The site provides a nice TL,DR:
- Efforts like Graphene OS face increasing pressure from apps that refuse to run on non-standard Android.
- The custom ROM project characterizes Google’s approach to device attestation as incomplete and flawed.
- Graphene OS is prepared to take legal action if Google won’t let it pass Play Integrity checks.
On a personal note, I’m annoyed that our national ID app doesn’t work with graphene OS.
There are workarounds by patching out the security check from the app and sideloading the newly created app, but that is just annoying and has to be repeated for every update.
I just don’t see how rigorose device checks that lock out graphene users, but allow any Android 8.0+ device (where security support ended more than 3 years ago) make ANY sense.
Edit: I tried it again today, it now lets me skip with a warning about the bootloader.
What national ID is it? I hope it isn’t the Belgian ItsMe app because I want to try putting lineage on my xperia 5 ii since it has a flaky fingerprint scanner now (software problem it seems)
“National ID app” sounds like something from 1984. I personally would never agree to something like that.
I understand that even the concept is scary to some, especially to our friends on the other side of the atlantic.
However, it isn’t really anything else than a 2FA app, similar to most banking apps. When you interact with a government service (like taxes, social security), you have to approve the login on your phone.
Is it libre? Can I opt out and use physical ID? If the answer is no to any of those you shouldn’t use it.
It’s high time Custom ROMs and users alike did this. I cannot run a custom ROM on my primary device due to play integrity shenanigans some apps may have.
Looking forward to this. I don’t run a custom ROM myself but I am rooted, primarily to revoke permissions from Google apps and to back up my OS and app data as I desire.
However I’d much prefer to be able to run something like GrapheneOS on a Pixel if it meant I could run apps that are picky about Safetynet/Play Integrity, such as banking apps and the like
CalyxOS lets me run most safety net stuff, though notably Pokemon go stopped working all of a sudden.
CalyxOS lets me run most safety net stuff…
SafetyNet is deprecated.
https://developer.android.com/privacy-and-security/safetynet/deprecation-timeline
Not gonna like. This is interesting. Who knew that messing with the ROM community could put Google in trouble.
“Trouble”
I think they will be fine as they have a huge market share in Android
I think you’d be surprised. CalyxOS are making massive claims. If the US or the EU investigate, Google could be fined or worse.
