On a personal note, I’m annoyed that our national ID app doesn’t work with graphene OS.
There are workarounds by patching out the security check from the app and sideloading the newly created app, but that is just annoying and has to be repeated for every update.
I just don’t see how rigorose device checks that lock out graphene users, but allow any Android 8.0+ device (where security support ended more than 3 years ago) make ANY sense.
Edit: I tried it again today, it now lets me skip with a warning about the bootloader.
I understand that even the concept is scary to some, especially to our friends on the other side of the atlantic.
However, it isn’t really anything else than a 2FA app, similar to most banking apps. When you interact with a government service (like taxes, social security), you have to approve the login on your phone.
On a personal note, I’m annoyed that our national ID app doesn’t work with graphene OS.
There are workarounds by patching out the security check from the app and sideloading the newly created app, but that is just annoying and has to be repeated for every update.
I just don’t see how rigorose device checks that lock out graphene users, but allow any Android 8.0+ device (where security support ended more than 3 years ago) make ANY sense.
Edit: I tried it again today, it now lets me skip with a warning about the bootloader.
It isn’t a security feature, more like a backdoor checkbox.
Or frontdoor checkbox for that matter, given that it’s the literal device owner that takes the action tripping their “security” tripwire.
“National ID app” sounds like something from 1984. I personally would never agree to something like that.
I understand that even the concept is scary to some, especially to our friends on the other side of the atlantic.
However, it isn’t really anything else than a 2FA app, similar to most banking apps. When you interact with a government service (like taxes, social security), you have to approve the login on your phone.
Is it libre? Can I opt out and use physical ID? If the answer is no to any of those you shouldn’t use it.
The app is not Libre, sadly. But it is possible to use a yubikey instead, then you need noting else than a web browser.
Using physical ID is possible, but this would mean that I would need to walk to some office.