GrapheneOS isn’t happy about this: https://grapheneos.social/@GrapheneOS/116200110686604617
Well, that can be said for many things, and I disagree with some of their arguments, but I agree with moving the dependency to a different consortium of phone vendors is much of the same.
Some vendor–independent attestation would be much preferable.
Don’t get too hopeful, this consortium still wants locked bootloaders, boot images signed only by a certain set of companies, and a lack of root access. So same shit, but different company and open source.
How about we just stop all this attestation BS and let people do what they want with the phones they bought and paid for as long as they’re not harming anyone.
But… there’s so much money to be made by acting as the gatekeeper.
Had this argument with someone earlier noting that you’re gonna start seeing device attestation for general PCs using Secure Boot before a site will load, and noted that will most likely be Windows only. Their response was that Linux can be signed and locked.
Though this is technically true, I’m curious how many people using Linux would be using to forgo root on their own device with a signed boot loader. It’ll basically implement the same issue with a different OS.
Why yes, I’m a full grown adult and definitely not three kernel modules in a trench coat.
I can pay with my degoogled rooted phone with official lineageos, with microG with curve pay: https://play.google.com/store/apps/details?id=com.imaginecurve.curve.prd
I guess it’s not available in all countries, and I had to do not privacy friendly KYC, scan my government ID.
