filmov
tv
GrapheneOS Threatens Legal Action Against Google [Android News Byte]
Показать описание
The custom ROM Graphene OS is finding it difficult to work with Google’s approach to device attestation.
~~~~~
Mentioned Links
~~~~
Video Description
~~~~~
Good afternoon, everyone, and welcome to another edition of the Android News Byte.
#android #androidnews #grapheneos
Today, I wanted to highlight some controversy between a privacy and security focused custom ROM, Graphene OS, and Google.
Recently, it was discovered that Authy, a popular 2FA application, was no longer working on devcies that were using the custom ROM.
This was due to an update ot Authy that began using the Google Play Integrity API to see if a device was using modified software.
Meaning, if your phone is rooted. . .if you have a custom ROM installed. . .or even if you just have the bootloader unlocked
Then you are likely not passing Play Integrity checks.
And if you aren't passing Play Integrity checks. . .then some apps may choose to prevent you from using them.
Personally, I have the bootloader of my daily driver unlocked just in case the software bootloops.
This allows me the option to manually flash a fresh copy of the Android firmware to get things back up and running
But since the bootloader is unlocked, I am also failing the Play Integrity checks required to use apps like Authy
You can see how messed up the system is, yet Google claims there are no other options at the moment.
So even if you aren't using a custom ROM. . .or even if you aren't modifying the Android filesystem.
Google has no way of knowing if the OS is official, and they must assume it's bad.
However, things get a bit more spicy as GrapheneOS claims it has "irrefutable proof that the majority of certified Android devices" do not comply with Google's Compatibility Test Suite nor do they comply with its Compatibility Definition Document.
And then goes on to say that the "Play Integrity API is based on lies" due to the claim that Google allows devices from certain OEMs instead of banning them. They claim the system is unfair and that Google could easily work with custom ROM makers who follow the proper security guidelines.
The team says they have tried working with Google to get things up and running again.
Since GrapheneOS does have their own set of signed keys for the hardware they support. It seems like they should be able to get in contact with Google and make sure devices with their software have the correct keys in place.
Google claims these discussions are in place, however, they also state that it's "a lot of work on both sides" and that this will also include lawyers as well. They then end this discussion by saying their team is happy to help the custom ROM community, but higher-level support is tough because "modders are such a tiny, tiny fraction of the user base."
As of right now, GrapheneOS is in talks with regulators around the world. Hoping to get some additional support via laws that will force Google to put in the effort.
It's not like they don't have the funds to put toward something like this.
For now, many of us fear that more apps will begin using the Play Integrity API to prevent certain people from using the application.
I have read the Uber Driver app blocks this as well.
I would actually be curious to see a list of all the applications that are blocking these devices.
If you have noticed an application no longer works on your devcie due to Play Integrity API checks, let me know down in the comments section below.
And please, don't forget to like this video while also subscribing to the channel for more Android news content like this.
Summary
~~~~~~~~~~~~~~~~~
1. Intro [00:00]
2.
As an Amazon associate, I may earn a commission on sales from the links below.
The Gear I Use
~~~~~~~~~~~~~~~~~
~~~~~
Mentioned Links
~~~~
Video Description
~~~~~
Good afternoon, everyone, and welcome to another edition of the Android News Byte.
#android #androidnews #grapheneos
Today, I wanted to highlight some controversy between a privacy and security focused custom ROM, Graphene OS, and Google.
Recently, it was discovered that Authy, a popular 2FA application, was no longer working on devcies that were using the custom ROM.
This was due to an update ot Authy that began using the Google Play Integrity API to see if a device was using modified software.
Meaning, if your phone is rooted. . .if you have a custom ROM installed. . .or even if you just have the bootloader unlocked
Then you are likely not passing Play Integrity checks.
And if you aren't passing Play Integrity checks. . .then some apps may choose to prevent you from using them.
Personally, I have the bootloader of my daily driver unlocked just in case the software bootloops.
This allows me the option to manually flash a fresh copy of the Android firmware to get things back up and running
But since the bootloader is unlocked, I am also failing the Play Integrity checks required to use apps like Authy
You can see how messed up the system is, yet Google claims there are no other options at the moment.
So even if you aren't using a custom ROM. . .or even if you aren't modifying the Android filesystem.
Google has no way of knowing if the OS is official, and they must assume it's bad.
However, things get a bit more spicy as GrapheneOS claims it has "irrefutable proof that the majority of certified Android devices" do not comply with Google's Compatibility Test Suite nor do they comply with its Compatibility Definition Document.
And then goes on to say that the "Play Integrity API is based on lies" due to the claim that Google allows devices from certain OEMs instead of banning them. They claim the system is unfair and that Google could easily work with custom ROM makers who follow the proper security guidelines.
The team says they have tried working with Google to get things up and running again.
Since GrapheneOS does have their own set of signed keys for the hardware they support. It seems like they should be able to get in contact with Google and make sure devices with their software have the correct keys in place.
Google claims these discussions are in place, however, they also state that it's "a lot of work on both sides" and that this will also include lawyers as well. They then end this discussion by saying their team is happy to help the custom ROM community, but higher-level support is tough because "modders are such a tiny, tiny fraction of the user base."
As of right now, GrapheneOS is in talks with regulators around the world. Hoping to get some additional support via laws that will force Google to put in the effort.
It's not like they don't have the funds to put toward something like this.
For now, many of us fear that more apps will begin using the Play Integrity API to prevent certain people from using the application.
I have read the Uber Driver app blocks this as well.
I would actually be curious to see a list of all the applications that are blocking these devices.
If you have noticed an application no longer works on your devcie due to Play Integrity API checks, let me know down in the comments section below.
And please, don't forget to like this video while also subscribing to the channel for more Android news content like this.
Summary
~~~~~~~~~~~~~~~~~
1. Intro [00:00]
2.
As an Amazon associate, I may earn a commission on sales from the links below.
The Gear I Use
~~~~~~~~~~~~~~~~~
0:05:09
GrapheneOS Threatens Legal Action Against Google [Android News Byte]
0:24:25
Here's How They Built The Most Secure Phone On The Planet
0:35:16
Apple Users' Privacy & Security Under Threat!
1:34:00
Top Privacy Tools and Tips for 2025!
0:08:07
Elon Musk's complaint says the quiet part out loud
0:00:20
Apple Opposes UK Push to Bypass End-to-End Encryption, Says It Will Remove iMessage and Fac|#shorts
0:07:01
Facebook Developed Exploit Against Tails OS
0:09:12
The most dangerous cyber weapon explained...
0:49:27
Real World Hacking with OTW (Privacy and Cybersecurity IoT warning)
0:34:39
Zoom is a Privacy & Security Nightmare! - A Complete Analysis
0:05:58
Who Can You Trust? | Go Incognito 6.2
0:12:24
The Splinternet | This Is How The Internet Dies
0:28:59
Become Anonymous: The Ultimate Guide To Privacy, Security, & Anonymity
0:12:59
Apple Is Not Your Friend - The Facebook Feud
0:14:29
Reddit breaks the law to quell protests - spez has gone too far
0:16:35
TikTok Bans & Controversial Signal Pin - Surveillance Report 18
0:09:37
F-Droid - All Of Android Free (and Open Source) Software in One Place
0:14:53
Surveillance Report EP. 3 | Weekly Security & Privacy News
0:07:24
Hardening Your Browser | Go Incognito 3.8
0:37:04
CalyxOS Is Getting New Phones! - Surveillance Report 78
0:43:45
FBI Spying on WhatsApp Messages in REAL TIME - Surveillance Report 65
0:00:32
'The NSO Group' a Full Documentary . Watch Online. Massive data leak reveals NSO Group&apo...
0:10:05
Crypto Market Today (Morning Update) 20 April 2023 | FTX | Coinbase | Elon Musk | Tesla and Bitcoin
Комментарии