Okay? Like, ive been rawdogging this no Google GrapheneOS thing for 2 Years now, and Ive Bad not a single Problem until now

Mobile check deposit is a moderately important use case in the USA. It would be possible to do that via the web, but banks usually don't.

Regardless, any apps refusing to run will annoy users, and they would likely blame the one brand of phone where that happens instead of the app developer or Google who actually deserve the blame.

.

It would be confusing if everyone didn't simply tolerate it.

Is users stop using custom ROMs, Google loses nothing.

It doesn't make it "tricky", it makes it impossible.

Same. The vast majority of my apps are from F-Droid or directly from the dev, and only a handful are from Google Play, and those are all on a separate profile. There's only 2 or 3 I actually need, and I can probably work around those.

Screw you Google, my next phone will probably be a Linux phone so I don't need to deal with this crap anymore.

If I don't have Play Integrity spoofed, my iPhone friends get an error when they try to RCS message me. This pretty much breaks communication for me.

At some point I will but I'm not currently ready to make that transition. My friend and I are using Duolingo together and the social aspect plus the familiarity of the structure have been really helpful

They walked back the ai thing (at least that's my understanding about it, I think there was a statement about it, not that that means much) but it's very clear it wont be something that's likely to work for me long term

But for the time being the structure that it provides and its format has helped me build a routine and actually stay pretty consistent, and I don't think I'm at a place yet where I can transition away from it

But I have checked out the Foss options and there were some neat supplemental tools on f-droid, and at some point I'll go through the play store and try out direct alternatives

It’s so confusing it only makes sense to business majors. /s

It is when the play store is not the only store allowed on devices. Their play services, with this change, are again acting as a monopoly, and again will be again be sued by the eu for violating anti trust laws.

This is the future of the Big Tech Internet if we're not careful. Attestation to be able to use communications and other websites.

Google is doing this because they have incentives to do so. They want to block malicious actors like attack their platforms.

Other companies want to lock down their own apps because they don't think users should be permitted to do anything other than use their apps exactly as they want.

I don't like it as a user, but I also see the reason why companies want this by being on the security side of software.

If you don't need any Google malware, you aren't at risk.

GrapheneOS comes without them by default.

i use firefox forks for mobile, op12r-

What do people even do in there ?

In France some banks illegally force users to use the banking application to approve online transactions as a security feature.

They could implement OTP as an alternative but they don't because they are lazy.

Time to get downvoted to oblivion.

I see a lot of people questioning why Google would do this and the answer is pretty simple.

Google created a tool a long, long time ago which was meant to make sure traffic from a device was "legit". This tool is 100% optional and app developers can use it if they would like. However, the tool was easy to bypass, so over the years Google has been making the tool harder and harder to bypass.

This article is just sharing news that Google is once again making this tool harder to bypass.

So why is Google doing this? They are doing this because they don't want their tool to be bypassable. Their tool is worthless if it can be bypassed.

The tool in question here is the Play Integrity API (previously known as the SafetyNet Attestation API). This is a tool that is offered to app developers that app developers can take advantage of if they want. The selling point of the tool is if you have operation in your app that is critical, you can try to prevent some abuse by verifying that the app is running on a "trusted build of Android" and that the app itself has not been modified from the original. That's all the tool does.

This isn't a new API. This isn't something Google is trying to force app developers to use. No. From Google's point of view, they are just making sure their tool does it's job properly.

As for why companies might choose to use this tool, a big reason is because Android is a huge target for fraud. Apple has locked all their stuff down so it is much harder to commit fraud on iOS (not impossible though). Although Apple offers something similar, there is generally less fraud coming from iOS devices vs Android. It's the double-edged sword of having a more open platform.

Companies are obviously not going to be happy to be the target of fraud so they have to weigh their options. Either they block a small percentage of their users that are possibly legit by implementing Play Integrity API or they risk losing a % of their income to fraud.

Now you can disagree with the tool's job, I'm not trying to argue whether the tool is good or bad. That is extremely subjective, but hopefully this answers why Google is making this change.

Wasn't this on Pixels already?

Troja has been impossible to conquer. Until.

The reason I felt forced to iOS. No more choice. No more GrapheneOS or CalyxOS for me.
Or at least that would make my life very difficult. National ID authentication, banking apps had stopped working.

GG Google. Destroy what made Android.