(smex.org)

845 points the-anarchist | 1 comments | 21 Jun 25 03:06 UTC | HN request time: 0.298s | source

Show context

sneak ◴[21 Jun 25 03:36 UTC] No.44334276[source]▶

>>44334167 (OP) #

Buying a device that only runs OEN Android is ridiculous for this exact reason.

We need to decouple phone hardware from phone software, as we did with computers.

replies(1): >>44334421 #

bilkow ◴[21 Jun 25 04:08 UTC] No.44334421[source]▶

>>44334276 #

We do, but I don't see it happening anytime soon. Many banking / government apps and even some games use the Play Integrity API, which AFAIK is starting to require remote attestation for newer devices.

As it's usually not viable to opt-out of those, the solution seems to be having a separate device.

replies(1): >>44383335 #

1. watusername ◴[26 Jun 25 01:11 UTC] No.44383335[source]▶

>>44334421 #

Fortunately (or unfortunately depending on your perspective), Play Integrity is bit of a joke at the moment thanks to a group of OEMs who just can't seem to secure their private keys. Unrevoked keyboxes are publicly available.

↑

Samsung embeds IronSource spyware app on phones across WANA