home.social

#playintegrity — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #playintegrity, aggregated by home.social.

  1. CW: Google's New Monopoly Over the Web (re: reCaptcha & Play Integrity)

    Wait, so reCaptcha can now require that you have an iPhone or an Android phone with Google Play Services?

    This is really really bad. :neocat_sad:​​ And, what's worse, is it seems nobody is talking about it.

    For anyone unfamiliar, Apple's App Attest and Google Play Integrity are "hardware attestation" which uses a hardware lockout to verify that you device is 'valid' and not tampered with. It sounds like good security in theory, until you think about it for more than two seconds. It effectively means that, in order to have a 'valid' device, you need to be approved by either Apple or Google. As such, it doesn't work with non-Google Android ROMs like GrapheneOS, /e/, LineageOS, etc. Once your device isn't considered valid by Play Integrity it locks you out of hundreds of apps, effectively giving Google complete monopolistic control over Android.

    This change to reCaptcha brings that same monopolistic control to the web. If you thought you could be above the Apple/Google duopoly in some way, congratulations, it's officially impossible. You have to own a Google Play-certified phone or iPhone in order to use the internet in 2026.

    For anyone hoping the European Union will step in, I wouldn't hold your breath.

    #Google #reCaptcha #GooglePlay #PlayIntegrity

  2. CW: Google's New Monopoly Over the Web (re: reCaptcha & Play Integrity)

    Wait, so reCaptcha can now require that you have an iPhone or an Android phone with Google Play Services?

    This is really really bad. :neocat_sad:​​ And, what's worse, is it seems nobody is talking about it.

    For anyone unfamiliar, Apple's App Attest and Google Play Integrity are "hardware attestation" which uses a hardware lockout to verify that you device is 'valid' and not tampered with. It sounds like good security in theory, until you think about it for more than two seconds. It effectively means that, in order to have a 'valid' device, you need to be approved by either Apple or Google. As such, it doesn't work with non-Google Android ROMs like GrapheneOS, /e/, LineageOS, etc. Once your device isn't considered valid by Play Integrity it locks you out of hundreds of apps, effectively giving Google complete monopolistic control over Android.

    This change to reCaptcha brings that same monopolistic control to the web. If you thought you could be above the Apple/Google duopoly in some way, congratulations, it's officially impossible. You have to own a Google Play-certified phone or iPhone in order to use the internet in 2026.

    For anyone hoping the European Union will step in, I wouldn't hold your breath.

    #Google #reCaptcha #GooglePlay #PlayIntegrity

  3. CW: Google's New Monopoly Over the Web (re: reCaptcha & Play Integrity)

    Wait, so reCaptcha can now require that you have an iPhone or an Android phone with Google Play Services?

    This is really really bad. :neocat_sad:​​ And, what's worse, is it seems nobody is talking about it.

    For anyone unfamiliar, Apple's App Attest and Google Play Integrity are "hardware attestation" which uses a hardware lockout to verify that you device is 'valid' and not tampered with. It sounds like good security in theory, until you think about it for more than two seconds. It effectively means that, in order to have a 'valid' device, you need to be approved by either Apple or Google. As such, it doesn't work with non-Google Android ROMs like GrapheneOS, /e/, LineageOS, etc. Once your device isn't considered valid by Play Integrity it locks you out of hundreds of apps, effectively giving Google complete monopolistic control over Android.

    This change to reCaptcha brings that same monopolistic control to the web. If you thought you could be above the Apple/Google duopoly in some way, congratulations, it's officially impossible. You have to own a Google Play-certified phone or iPhone in order to use the internet in 2026.

    For anyone hoping the European Union will step in, I wouldn't hold your breath.

    #Google #reCaptcha #GooglePlay #PlayIntegrity

  4. CW: Google's New Monopoly Over the Web (re: reCaptcha & Play Integrity)

    Wait, so reCaptcha can now require that you have an iPhone or an Android phone with Google Play Services?

    This is really really bad. :neocat_sad:​​ And, what's worse, is it seems nobody is talking about it.

    For anyone unfamiliar, Apple's App Attest and Google Play Integrity are "hardware attestation" which uses a hardware lockout to verify that you device is 'valid' and not tampered with. It sounds like good security in theory, until you think about it for more than two seconds. It effectively means that, in order to have a 'valid' device, you need to be approved by either Apple or Google. As such, it doesn't work with non-Google Android ROMs like GrapheneOS, /e/, LineageOS, etc. Once your device isn't considered valid by Play Integrity it locks you out of hundreds of apps, effectively giving Google complete monopolistic control over Android.

    This change to reCaptcha brings that same monopolistic control to the web. If you thought you could be above the Apple/Google duopoly in some way, congratulations, it's officially impossible. You have to own a Google Play-certified phone or iPhone in order to use the internet in 2026.

    For anyone hoping the European Union will step in, I wouldn't hold your breath.

    #Google #reCaptcha #GooglePlay #PlayIntegrity

  5. CW: Google's New Monopoly Over the Web (re: reCaptcha & Play Integrity)

    Wait, so reCaptcha can now require that you have an iPhone or an Android phone with Google Play Services?

    This is really really bad. :neocat_sad:​​ And, what's worse, is it seems nobody is talking about it.

    For anyone unfamiliar, Apple's App Attest and Google Play Integrity are "hardware attestation" which uses a hardware lockout to verify that you device is 'valid' and not tampered with. It sounds like good security in theory, until you think about it for more than two seconds. It effectively means that, in order to have a 'valid' device, you need to be approved by either Apple or Google. As such, it doesn't work with non-Google Android ROMs like GrapheneOS, /e/, LineageOS, etc. Once your device isn't considered valid by Play Integrity it locks you out of hundreds of apps, effectively giving Google complete monopolistic control over Android.

    This change to reCaptcha brings that same monopolistic control to the web. If you thought you could be above the Apple/Google duopoly in some way, congratulations, it's officially impossible. You have to own a Google Play-certified phone or iPhone in order to use the internet in 2026.

    For anyone hoping the European Union will step in, I wouldn't hold your breath.

    #Google #reCaptcha #GooglePlay #PlayIntegrity

  6. Google’s new QR-based reCAPTCHA ties web verification to Play Integrity and Apple attestation systems instead of traditional CAPTCHA check 🌐
    Privacy-focused Android variants like GrapheneOS and LineageOS risk losing access as device approval becomes part of web authentication 🔐

    @GrapheneOS
    @lineageos

    🔗 heise.de/en/news/Google-s-new-

    #TechNews #Google #reCAPTCHA #Captcha #GooglePlay #PlayIntegrity #GrapheneOS #LineageOS #Privacy #OpenWeb #Android #Security #FOSS #Telemetry #Web #Freedom #OpenSource

  7. Google’s new QR-based reCAPTCHA ties web verification to Play Integrity and Apple attestation systems instead of traditional CAPTCHA check 🌐
    Privacy-focused Android variants like GrapheneOS and LineageOS risk losing access as device approval becomes part of web authentication 🔐

    @GrapheneOS
    @lineageos

    🔗 heise.de/en/news/Google-s-new-

    #TechNews #Google #reCAPTCHA #Captcha #GooglePlay #PlayIntegrity #GrapheneOS #LineageOS #Privacy #OpenWeb #Android #Security #FOSS #Telemetry #Web #Freedom #OpenSource

  8. Google’s new QR-based reCAPTCHA ties web verification to Play Integrity and Apple attestation systems instead of traditional CAPTCHA check 🌐
    Privacy-focused Android variants like GrapheneOS and LineageOS risk losing access as device approval becomes part of web authentication 🔐

    @GrapheneOS
    @lineageos

    🔗 heise.de/en/news/Google-s-new-

    #TechNews #Google #reCAPTCHA #Captcha #GooglePlay #PlayIntegrity #GrapheneOS #LineageOS #Privacy #OpenWeb #Android #Security #FOSS #Telemetry #Web #Freedom #OpenSource

  9. Google’s new QR-based reCAPTCHA ties web verification to Play Integrity and Apple attestation systems instead of traditional CAPTCHA check 🌐
    Privacy-focused Android variants like GrapheneOS and LineageOS risk losing access as device approval becomes part of web authentication 🔐

    @GrapheneOS
    @lineageos

    🔗 heise.de/en/news/Google-s-new-

    #TechNews #Google #reCAPTCHA #Captcha #GooglePlay #PlayIntegrity #GrapheneOS #LineageOS #Privacy #OpenWeb #Android #Security #FOSS #Telemetry #Web #Freedom #OpenSource

  10. Google’s new QR-based reCAPTCHA ties web verification to Play Integrity and Apple attestation systems instead of traditional CAPTCHA check 🌐
    Privacy-focused Android variants like GrapheneOS and LineageOS risk losing access as device approval becomes part of web authentication 🔐

    @GrapheneOS
    @lineageos

    🔗 heise.de/en/news/Google-s-new-

    #TechNews #Google #reCAPTCHA #Captcha #GooglePlay #PlayIntegrity #GrapheneOS #LineageOS #Privacy #OpenWeb #Android #Security #FOSS #Telemetry #Web #Freedom #OpenSource

  11. Good to see a POC that shows how useless security-wise is the Play Integrity:

    Android LPE using DRAM bitflip => bsky.app/profile/retr0.id/post

    A requirement to get any security protection with the Play Integrity is that attackers can't bypass it on any device.

    As soon as an attacker can bypass it, it is possible to distribute app clones (fake banking app) that proxy-pass the Integrity requests to a controlled device, defeating the Play Integrity.

    On the other side, how many users are locked-out of critical services because of the Play Integrity? For legit users, any non-trivial workaround is a blocker.

    Play Integrity is not about security, but about coercition, Google's tool to impose their conditions: eg. forcing OEM to preinstall their apps, some with privileges (Chrome, Youtube, Play Services, etc)

    #Google #PlayIntegrity #Android #LPE

  12. Good to see a POC that shows how useless security-wise is the Play Integrity:

    Android LPE using DRAM bitflip => bsky.app/profile/retr0.id/post

    A requirement to get any security protection with the Play Integrity is that attackers can't bypass it on any device.

    As soon as an attacker can bypass it, it is possible to distribute app clones (fake banking app) that proxy-pass the Integrity requests to a controlled device, defeating the Play Integrity.

    On the other side, how many users are locked-out of critical services because of the Play Integrity? For legit users, any non-trivial workaround is a blocker.

    Play Integrity is not about security, but about coercition, Google's tool to impose their conditions: eg. forcing OEM to preinstall their apps, some with privileges (Chrome, Youtube, Play Services, etc)

    #Google #PlayIntegrity #Android #LPE

  13. Good to see a POC that shows how useless security-wise is the Play Integrity:

    Android LPE using DRAM bitflip => bsky.app/profile/retr0.id/post

    A requirement to get any security protection with the Play Integrity is that attackers can't bypass it on any device.

    As soon as an attacker can bypass it, it is possible to distribute app clones (fake banking app) that proxy-pass the Integrity requests to a controlled device, defeating the Play Integrity.

    On the other side, how many users are locked-out of critical services because of the Play Integrity? For legit users, any non-trivial workaround is a blocker.

    Play Integrity is not about security, but about coercition, Google's tool to impose their conditions: eg. forcing OEM to preinstall their apps, some with privileges (Chrome, Youtube, Play Services, etc)

    #Google #PlayIntegrity #Android #LPE

  14. Good to see a POC that shows how useless security-wise is the Play Integrity:

    Android LPE using DRAM bitflip => bsky.app/profile/retr0.id/post

    A requirement to get any security protection with the Play Integrity is that attackers can't bypass it on any device.

    As soon as an attacker can bypass it, it is possible to distribute app clones (fake banking app) that proxy-pass the Integrity requests to a controlled device, defeating the Play Integrity.

    On the other side, how many users are locked-out of critical services because of the Play Integrity? For legit users, any non-trivial workaround is a blocker.

    Play Integrity is not about security, but about coercition, Google's tool to impose their conditions: eg. forcing OEM to preinstall their apps, some with privileges (Chrome, Youtube, Play Services, etc)

    #Google #PlayIntegrity #Android #LPE

  15. Good to see a POC that shows how useless security-wise is the Play Integrity:

    Android LPE using DRAM bitflip => bsky.app/profile/retr0.id/post

    A requirement to get any security protection with the Play Integrity is that attackers can't bypass it on any device.

    As soon as an attacker can bypass it, it is possible to distribute app clones (fake banking app) that proxy-pass the Integrity requests to a controlled device, defeating the Play Integrity.

    On the other side, how many users are locked-out of critical services because of the Play Integrity? For legit users, any non-trivial workaround is a blocker.

    Play Integrity is not about security, but about coercition, Google's tool to impose their conditions: eg. forcing OEM to preinstall their apps, some with privileges (Chrome, Youtube, Play Services, etc)

    #Google #PlayIntegrity #Android #LPE

  16. CW: Rant / Banking+Root / App-Zwang

    Hatte das Thema die Tage schon. Hat mich halt Zeit gekostet für vglw. ernüchterndes Ergebnis 😶

    Banken mit TAN/ #OnlineBanking ohne #AppZwang muss man suchen.
    Würde gerne solche Annehmlichkeiten wie Bezahlen mit dem Handy nutzen, oder #AndroidAuto. 👀 Aber halt datensparsam. 💁

    Hab intensiv versucht die #PlayIntegrity auszutricksen. Zwecklos 🥲
    Install mehrerer #Magisk Module. Dann sowas: Öffnet Link zu #Telegram Channel, gehst zurück und siehst das am Log-Ende 😵

  17. CW: Rant / Banking+Root / App-Zwang

    Hatte das Thema die Tage schon. Hat mich halt Zeit gekostet für vglw. ernüchterndes Ergebnis 😶

    Banken mit TAN/ #OnlineBanking ohne #AppZwang muss man suchen.
    Würde gerne solche Annehmlichkeiten wie Bezahlen mit dem Handy nutzen, oder #AndroidAuto. 👀 Aber halt datensparsam. 💁

    Hab intensiv versucht die #PlayIntegrity auszutricksen. Zwecklos 🥲
    Install mehrerer #Magisk Module. Dann sowas: Öffnet Link zu #Telegram Channel, gehst zurück und siehst das am Log-Ende 😵

  18. CW: Rant / Banking+Root / App-Zwang

    Hatte das Thema die Tage schon. Hat mich halt Zeit gekostet für vglw. ernüchterndes Ergebnis 😶

    Banken mit TAN/ #OnlineBanking ohne #AppZwang muss man suchen.
    Würde gerne solche Annehmlichkeiten wie Bezahlen mit dem Handy nutzen, oder #AndroidAuto. 👀 Aber halt datensparsam. 💁

    Hab intensiv versucht die #PlayIntegrity auszutricksen. Zwecklos 🥲
    Install mehrerer #Magisk Module. Dann sowas: Öffnet Link zu #Telegram Channel, gehst zurück und siehst das am Log-Ende 😵

  19. CW: Rant / Banking+Root / App-Zwang

    Hatte das Thema die Tage schon. Hat mich halt Zeit gekostet für vglw. ernüchterndes Ergebnis 😶

    Banken mit TAN/ #OnlineBanking ohne #AppZwang muss man suchen.
    Würde gerne solche Annehmlichkeiten wie Bezahlen mit dem Handy nutzen, oder #AndroidAuto. 👀 Aber halt datensparsam. 💁

    Hab intensiv versucht die #PlayIntegrity auszutricksen. Zwecklos 🥲
    Install mehrerer #Magisk Module. Dann sowas: Öffnet Link zu #Telegram Channel, gehst zurück und siehst das am Log-Ende 😵

  20. CW: Rant / Banking+Root / App-Zwang

    Hatte das Thema die Tage schon. Hat mich halt Zeit gekostet für vglw. ernüchterndes Ergebnis 😶

    Banken mit TAN/ #OnlineBanking ohne #AppZwang muss man suchen.
    Würde gerne solche Annehmlichkeiten wie Bezahlen mit dem Handy nutzen, oder #AndroidAuto. 👀 Aber halt datensparsam. 💁

    Hab intensiv versucht die #PlayIntegrity auszutricksen. Zwecklos 🥲
    Install mehrerer #Magisk Module. Dann sowas: Öffnet Link zu #Telegram Channel, gehst zurück und siehst das am Log-Ende 😵

  21. RE: wolnoscwkieszeni.pl/unified-at

    Po dłuższej przerwie na blogu wylądował nowy wpis o Unified Attestation.

    Jest to europejski odpowiednik Play Integrity, czyli centralny system atestacji urządzeń. Ta inicjatywa producenta smartfonów Volla jest promowana jako uniezależnienie się od Google. Jednak czy uniezależnienie się od jednej korporacji ma polegać na uzależnieniu się od innej?

    Temat dość istotny z punktu widzenia niezależności i konkurencyjności mobilnych systemów operacyjnych, a nie zauważyłem żeby przebił się do polskich internetów.

    Ps. Kto znajdzie w tekście easter egga? 😉

    #unifiedattestation #playintegrity #volla #murena #eos #iodeos #grapheneos #android

  22. RE: wolnoscwkieszeni.pl/unified-at

    Po dłuższej przerwie na blogu wylądował nowy wpis o Unified Attestation.

    Jest to europejski odpowiednik Play Integrity, czyli centralny system atestacji urządzeń. Ta inicjatywa producenta smartfonów Volla jest promowana jako uniezależnienie się od Google. Jednak czy uniezależnienie się od jednej korporacji ma polegać na uzależnieniu się od innej?

    Temat dość istotny z punktu widzenia niezależności i konkurencyjności mobilnych systemów operacyjnych, a nie zauważyłem żeby przebił się do polskich internetów.

    Ps. Kto znajdzie w tekście easter egga? 😉

    #unifiedattestation #playintegrity #volla #murena #eos #iodeos #grapheneos #android

  23. RE: wolnoscwkieszeni.pl/unified-at

    Po dłuższej przerwie na blogu wylądował nowy wpis o Unified Attestation.

    Jest to europejski odpowiednik Play Integrity, czyli centralny system atestacji urządzeń. Ta inicjatywa producenta smartfonów Volla jest promowana jako uniezależnienie się od Google. Jednak czy uniezależnienie się od jednej korporacji ma polegać na uzależnieniu się od innej?

    Temat dość istotny z punktu widzenia niezależności i konkurencyjności mobilnych systemów operacyjnych, a nie zauważyłem żeby przebił się do polskich internetów.

    Ps. Kto znajdzie w tekście easter egga? 😉

    #unifiedattestation #playintegrity #volla #murena #eos #iodeos #grapheneos #android

  24. RE: wolnoscwkieszeni.pl/unified-at

    Po dłuższej przerwie na blogu wylądował nowy wpis o Unified Attestation.

    Jest to europejski odpowiednik Play Integrity, czyli centralny system atestacji urządzeń. Ta inicjatywa producenta smartfonów Volla jest promowana jako uniezależnienie się od Google. Jednak czy uniezależnienie się od jednej korporacji ma polegać na uzależnieniu się od innej?

    Temat dość istotny z punktu widzenia niezależności i konkurencyjności mobilnych systemów operacyjnych, a nie zauważyłem żeby przebił się do polskich internetów.

    Ps. Kto znajdzie w tekście easter egga? 😉

    #unifiedattestation #playintegrity #volla #murena #eos #iodeos #grapheneos #android

  25. RE: wolnoscwkieszeni.pl/unified-at

    Po dłuższej przerwie na blogu wylądował nowy wpis o Unified Attestation.

    Jest to europejski odpowiednik Play Integrity, czyli centralny system atestacji urządzeń. Ta inicjatywa producenta smartfonów Volla jest promowana jako uniezależnienie się od Google. Jednak czy uniezależnienie się od jednej korporacji ma polegać na uzależnieniu się od innej?

    Temat dość istotny z punktu widzenia niezależności i konkurencyjności mobilnych systemów operacyjnych, a nie zauważyłem żeby przebił się do polskich internetów.

    Ps. Kto znajdzie w tekście easter egga? 😉

    #unifiedattestation #playintegrity #volla #murena #eos #iodeos #grapheneos #android

  26. Unified Attestation – Europejski odpowiednik Play Integrity.

    Ostatnimi czasy w wolnym (as speech, not as turtle ;) ) internecie dość mocno wrze, głównie za sprawą działań, które śmiało możemy nazwać zamachami na naszą prywatność. Najgłośniejszym echem odbijają się tematy domykania Androida przez Google, czy powracający jak bumerang Chat Control. W całym tym zgiełku mógł nam umknąć pomysł stworzenia europejskiego odpowiednika Play Integrity. Unified Attestation, bo o nim będzie mowa, to inicjatywa europejskiej firmy Volla przy współpracy Murena (/e/os) oraz iodé.

    wolnoscwkieszeni.pl/unified-at

  27. Unified Attestation – Europejski odpowiednik Play Integrity.

    Ostatnimi czasy w wolnym (as speech, not as turtle ;) ) internecie dość mocno wrze, głównie za sprawą działań, które śmiało możemy nazwać zamachami na naszą prywatność. Najgłośniejszym echem odbijają się tematy domykania Androida przez Google, czy powracający jak bumerang Chat Control. W całym tym zgiełku mógł nam umknąć pomysł stworzenia europejskiego odpowiednika Play Integrity. Unified Attestation, bo o nim będzie mowa, to inicjatywa europejskiej firmy Volla przy współpracy Murena (/e/os) oraz iodé.

    wolnoscwkieszeni.pl/unified-at

  28. Unified Attestation – Europejski odpowiednik Play Integrity.

    Ostatnimi czasy w wolnym (as speech, not as turtle ;) ) internecie dość mocno wrze, głównie za sprawą działań, które śmiało możemy nazwać zamachami na naszą prywatność. Najgłośniejszym echem odbijają się tematy domykania Androida przez Google, czy powracający jak bumerang Chat Control. W całym tym zgiełku mógł nam umknąć pomysł stworzenia europejskiego odpowiednika Play Integrity. Unified Attestation, bo o nim będzie mowa, to inicjatywa europejskiej firmy Volla przy współpracy Murena (/e/os) oraz iodé.

    wolnoscwkieszeni.pl/unified-at

  29. Unified Attestation – Europejski odpowiednik Play Integrity.

    Ostatnimi czasy w wolnym (as speech, not as turtle ;) ) internecie dość mocno wrze, głównie za sprawą działań, które śmiało możemy nazwać zamachami na naszą prywatność. Najgłośniejszym echem odbijają się tematy domykania Androida przez Google, czy powracający jak bumerang Chat Control. W całym tym zgiełku mógł nam umknąć pomysł stworzenia europejskiego odpowiednika Play Integrity. Unified Attestation, bo o nim będzie mowa, to inicjatywa europejskiej firmy Volla przy współpracy Murena (/e/os) oraz iodé.

    wolnoscwkieszeni.pl/unified-at

  30. Unified Attestation – Europejski odpowiednik Play Integrity.

    Ostatnimi czasy w wolnym (as speech, not as turtle ;) ) internecie dość mocno wrze, głównie za sprawą działań, które śmiało możemy nazwać zamachami na naszą prywatność. Najgłośniejszym echem odbijają się tematy domykania Androida przez Google, czy powracający jak bumerang Chat Control. W całym tym zgiełku mógł nam umknąć pomysł stworzenia europejskiego odpowiednika Play Integrity. Unified Attestation, bo o nim będzie mowa, to inicjatywa europejskiej firmy Volla przy współpracy Murena (/e/os) oraz iodé.

    wolnoscwkieszeni.pl/unified-at

  31. Ohne #Google #PlayIntegrity auf #Android oder ohne #Apple #iOS #appattest funktioniert das #EUDI-Wallet nicht.

    Das heißt doch, versierte Entwickler*innen, denen #Security wirklich wichtig ist, werden kaum Anwendungen bauen, die mit dem #Wallet des @bmi arbeiten, oder?

    Also: insgesamt werden die Bürger*innen künftig eher weniger starke IT-Sicherheit auf dem #App Markt finden, oder?

    Ist das denn das Ziel der @Bundesregierung, hat sie irgendwie Angst vor Bürger*innen, die ihre Daten gut schützen können? 🤔

    bmi.usercontent.opencode.de/eu

    #Digitalisierung #wallet #id #authentication #bmi #eu #datenschutz

  32. Ohne #Google #PlayIntegrity auf #Android oder ohne #Apple #iOS #appattest funktioniert das #EUDI-Wallet nicht.

    Das heißt doch, versierte Entwickler*innen, denen #Security wirklich wichtig ist, werden kaum Anwendungen bauen, die mit dem #Wallet des @bmi arbeiten, oder?

    Also: insgesamt werden die Bürger*innen künftig eher weniger starke IT-Sicherheit auf dem #App Markt finden, oder?

    Ist das denn das Ziel der @Bundesregierung, hat sie irgendwie Angst vor Bürger*innen, die ihre Daten gut schützen können? 🤔

    bmi.usercontent.opencode.de/eu

    #Digitalisierung #wallet #id #authentication #bmi #eu #datenschutz

  33. Ohne #Google #PlayIntegrity auf #Android oder ohne #Apple #iOS #appattest funktioniert das #EUDI-Wallet nicht.

    Das heißt doch, versierte Entwickler*innen, denen #Security wirklich wichtig ist, werden kaum Anwendungen bauen, die mit dem #Wallet des @bmi arbeiten, oder?

    Also: insgesamt werden die Bürger*innen künftig eher weniger starke IT-Sicherheit auf dem #App Markt finden, oder?

    Ist das denn das Ziel der @Bundesregierung, hat sie irgendwie Angst vor Bürger*innen, die ihre Daten gut schützen können? 🤔

    bmi.usercontent.opencode.de/eu

    #Digitalisierung #wallet #id #authentication #bmi #eu #datenschutz

  34. Ohne #Google #PlayIntegrity auf #Android oder ohne #Apple #iOS #appattest funktioniert das #EUDI-Wallet nicht.

    Das heißt doch, versierte Entwickler*innen, denen #Security wirklich wichtig ist, werden kaum Anwendungen bauen, die mit dem #Wallet des @bmi arbeiten, oder?

    Also: insgesamt werden die Bürger*innen künftig eher weniger starke IT-Sicherheit auf dem #App Markt finden, oder?

    Ist das denn das Ziel der @Bundesregierung, hat sie irgendwie Angst vor Bürger*innen, die ihre Daten gut schützen können? 🤔

    bmi.usercontent.opencode.de/eu

    #Digitalisierung #wallet #id #authentication #bmi #eu #datenschutz

  35. Ohne #Google #PlayIntegrity auf #Android oder ohne #Apple #iOS #appattest funktioniert das #EUDI-Wallet nicht.

    Das heißt doch, versierte Entwickler*innen, denen #Security wirklich wichtig ist, werden kaum Anwendungen bauen, die mit dem #Wallet des @bmi arbeiten, oder?

    Also: insgesamt werden die Bürger*innen künftig eher weniger starke IT-Sicherheit auf dem #App Markt finden, oder?

    Ist das denn das Ziel der @Bundesregierung, hat sie irgendwie Angst vor Bürger*innen, die ihre Daten gut schützen können? 🤔

    bmi.usercontent.opencode.de/eu

    #Digitalisierung #wallet #id #authentication #bmi #eu #datenschutz

  36. @manuel il problema non è #Jolla. Il problema è proprio #AppIO che non dovrebbe esistere in questa forma:
    1) non dovrebbe richiedere #PlayIntegrity
    2) non è riproducibile/ricompilabile quindi è di fatto #SoftwareProprietario e #softwareprivativo
    3) dovrebbe poter girare "ovunque": #Linux #BSD, #haiku eccetera
    Per come è implementato #noAppIO
    Lo stesso vale per app di banche e CieID

  37. @manuel il problema non è #Jolla. Il problema è proprio #AppIO che non dovrebbe esistere in questa forma:
    1) non dovrebbe richiedere #PlayIntegrity
    2) non è riproducibile/ricompilabile quindi è di fatto #SoftwareProprietario e #softwareprivativo
    3) dovrebbe poter girare "ovunque": #Linux #BSD, #haiku eccetera
    Per come è implementato #noAppIO
    Lo stesso vale per app di banche e CieID

  38. @manuel il problema non è #Jolla. Il problema è proprio #AppIO che non dovrebbe esistere in questa forma:
    1) non dovrebbe richiedere #PlayIntegrity
    2) non è riproducibile/ricompilabile quindi è di fatto #SoftwareProprietario e #softwareprivativo
    3) dovrebbe poter girare "ovunque": #Linux #BSD, #haiku eccetera
    Per come è implementato #noAppIO
    Lo stesso vale per app di banche e CieID

  39. @manuel il problema non è #Jolla. Il problema è proprio #AppIO che non dovrebbe esistere in questa forma:
    1) non dovrebbe richiedere #PlayIntegrity
    2) non è riproducibile/ricompilabile quindi è di fatto #SoftwareProprietario e #softwareprivativo
    3) dovrebbe poter girare "ovunque": #Linux #BSD, #haiku eccetera
    Per come è implementato #noAppIO
    Lo stesso vale per app di banche e CieID

  40. @manuel il problema non è #Jolla. Il problema è proprio #AppIO che non dovrebbe esistere in questa forma:
    1) non dovrebbe richiedere #PlayIntegrity
    2) non è riproducibile/ricompilabile quindi è di fatto #SoftwareProprietario e #softwareprivativo
    3) dovrebbe poter girare "ovunque": #Linux #BSD, #haiku eccetera
    Per come è implementato #noAppIO
    Lo stesso vale per app di banche e CieID

  41. @Androidauth

    On the topic, #GrapheneOS allows to install the official PlayServices, Playstore and ServicesFramework.

    These run with a compatibility tool called #GMSCompat and if this tool grants them the required privileged permissions.

    So GCam should work fine, it just got a ton more invasive. #Enshittification

    Apps run fine without elevated permissions, but #Google doesnt care to build their apps following the #Android security model. So they require crazy deep access to things, as they are too lazy to make a permission for that.

    Meanwhile Google is locking down user app permissions further and further (breaking things like #Syncthing), while leaving out essential permissions like the ones GrapheneOS adds (network permission, storage scopes, contact scopes, sensors) to fuel their tracking business.

    And systems without basically backdoors (proprietary system apps that bypass the Android app sandboxing model... by not using it) are not Play Certified and apps using #PlayIntegrity will refuse to run on them. FOR SECURITY!

    They refuse to run on systems without backdoors!

    (Little side tangent but this just strengthens how ironic Google is)

  42. @Androidauth

    On the topic, #GrapheneOS allows to install the official PlayServices, Playstore and ServicesFramework.

    These run with a compatibility tool called #GMSCompat and if this tool grants them the required privileged permissions.

    So GCam should work fine, it just got a ton more invasive. #Enshittification

    Apps run fine without elevated permissions, but #Google doesnt care to build their apps following the #Android security model. So they require crazy deep access to things, as they are too lazy to make a permission for that.

    Meanwhile Google is locking down user app permissions further and further (breaking things like #Syncthing), while leaving out essential permissions like the ones GrapheneOS adds (network permission, storage scopes, contact scopes, sensors) to fuel their tracking business.

    And systems without basically backdoors (proprietary system apps that bypass the Android app sandboxing model... by not using it) are not Play Certified and apps using #PlayIntegrity will refuse to run on them. FOR SECURITY!

    They refuse to run on systems without backdoors!

    (Little side tangent but this just strengthens how ironic Google is)

  43. @Androidauth

    On the topic, #GrapheneOS allows to install the official PlayServices, Playstore and ServicesFramework.

    These run with a compatibility tool called #GMSCompat and if this tool grants them the required privileged permissions.

    So GCam should work fine, it just got a ton more invasive. #Enshittification

    Apps run fine without elevated permissions, but #Google doesnt care to build their apps following the #Android security model. So they require crazy deep access to things, as they are too lazy to make a permission for that.

    Meanwhile Google is locking down user app permissions further and further (breaking things like #Syncthing), while leaving out essential permissions like the ones GrapheneOS adds (network permission, storage scopes, contact scopes, sensors) to fuel their tracking business.

    And systems without basically backdoors (proprietary system apps that bypass the Android app sandboxing model... by not using it) are not Play Certified and apps using #PlayIntegrity will refuse to run on them. FOR SECURITY!

    They refuse to run on systems without backdoors!

    (Little side tangent but this just strengthens how ironic Google is)

  44. @Androidauth

    On the topic, #GrapheneOS allows to install the official PlayServices, Playstore and ServicesFramework.

    These run with a compatibility tool called #GMSCompat and if this tool grants them the required privileged permissions.

    So GCam should work fine, it just got a ton more invasive. #Enshittification

    Apps run fine without elevated permissions, but #Google doesnt care to build their apps following the #Android security model. So they require crazy deep access to things, as they are too lazy to make a permission for that.

    Meanwhile Google is locking down user app permissions further and further (breaking things like #Syncthing), while leaving out essential permissions like the ones GrapheneOS adds (network permission, storage scopes, contact scopes, sensors) to fuel their tracking business.

    And systems without basically backdoors (proprietary system apps that bypass the Android app sandboxing model... by not using it) are not Play Certified and apps using #PlayIntegrity will refuse to run on them. FOR SECURITY!

    They refuse to run on systems without backdoors!

    (Little side tangent but this just strengthens how ironic Google is)

  45. Un ejemplo de app que usa la #PlayIntegrity para banear SOs Android no licenciados por Google, porque esta app funciona perfectamente en PixelOS.

    Renfe contribuyendo al monopolio de Google, triste.

  46. Un ejemplo de app que usa la #PlayIntegrity para banear SOs Android no licenciados por Google, porque esta app funciona perfectamente en PixelOS.

    Renfe contribuyendo al monopolio de Google, triste.

  47. Un ejemplo de app que usa la #PlayIntegrity para banear SOs Android no licenciados por Google, porque esta app funciona perfectamente en PixelOS.

    Renfe contribuyendo al monopolio de Google, triste.

  48. Un ejemplo de app que usa la #PlayIntegrity para banear SOs Android no licenciados por Google, porque esta app funciona perfectamente en PixelOS.

    Renfe contribuyendo al monopolio de Google, triste.

  49. Un ejemplo de app que usa la #PlayIntegrity para banear SOs Android no licenciados por Google, porque esta app funciona perfectamente en PixelOS.

    Renfe contribuyendo al monopolio de Google, triste.

  50. Come successo per l'app #IO, l'Europa con la sua app di verifica dell'età programma di tagliare fuori tutti gli OS non licenziati da Google come #GrapheneOS

    reddit.com/r/BuyFromEU/s/ZlFRn

    #grapheneos #privacy #playintegrity #europe