this post was submitted on 18 Sep 2024
211 points (94.5% liked)

Privacy

31981 readers
273 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 1 month ago (2 children)

Some banking apps allegedly don't work but i have never encountered one. If your bank has a mobile accessible website, it's basically a non-issue.

[–] [email protected] 5 points 1 month ago* (last edited 1 month ago) (1 children)

More specifically, Play Integrity API will fail on the Play Service integrity check. If I recall correctly, this is why Google Pay won’t work on GrapheneOS.

Some banks require the app to be used as second factor to log into their website.

[–] [email protected] 1 points 1 month ago* (last edited 1 month ago) (2 children)

Can you work around it with magisk like rooted stock android? I bought my pixel specifically for graphene but google pay is the main thing preventing me from switching

[–] [email protected] 1 points 1 month ago (1 children)

You cannot root grapheneos, so the answer is no. That method does work on other rom's like lineage.

[–] [email protected] 1 points 1 month ago* (last edited 1 month ago) (1 children)

Last time I checked, it was broken for years already. It’s been a while though. edit: Confirmed: https://xdaforums.com/t/module-play-integrity-fix-safetynet-fix.4607985/ Only basic/device attestation is working.

[–] [email protected] 1 points 1 month ago

I'm currently getting MEETS_DEVICE_INTREGRITY with play integrity fix, which is enough for Google Pay to work. The only thing that I haven't been able to do is drive for Uber or use RCS oddly enough. RCS happened to fix itself about a month ago as well.

[–] [email protected] 1 points 1 month ago

As far as I’m aware, there are no work-arounds that allow for circumventing the Play Integrity API. Probably because you cannot avoid the involvement of a Google backend API that is accessed by the app’s backend. It works like this: Play Services hands a token to the app, the app sends it to the app backend, and then the app backend lets a Google backend verify the token, which results in a verdict. You cannot manipulate the token.

[–] refalo 1 points 1 month ago* (last edited 1 month ago) (1 children)

google wallet is not required to be tied to any bank accounts, and US does not even support NFC within banking apps.

[–] [email protected] 6 points 1 month ago

Both true statements. The banking apps that don't work aren't because google wallet doesn't work, but because they use the same trust policies that Wallet requires in order to run (which GrapheneOS cannot meet because its not a "trusted" OS, per Google)