security/hakurei.app
security/hakurei.app
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 4 Wiki Activity

add list of apps banning GrapheneOS via Play Integrity

Browse Source
This commit is contained in:
Daniel Micay 2024-12-09 11:49:23 -05:00
parent 2e02cd353e
commit 9bba7f4e65
1 changed files with 25 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
static/articles/attestation-compatibility-guide.html
View File

@ -119,6 +119,31 @@
into the stock OS without a valid security reason. GrapheneOS not only upholds the into the stock OS without a valid security reason. GrapheneOS not only upholds the
app security model but substantially reinforces it, so it cannot be justified with app security model but substantially reinforces it, so it cannot be justified with
reasoning based on security, anti-fraud, etc.</p> reasoning based on security, anti-fraud, etc.</p>
<article id="apps-banning-grapheneos">
<h2><a href="#apps-banning-grapheneos">Apps banning GrapheneOS</a></h2>
<p>This is a list of the apps banning GrapheneOS with the Play Integrity API with
links to their Play Store pages for leaving feedback:</p>
<ul>
<li><a href="https://play.google.com/store/apps/details?id=com.revolut.revolut">Revolut</a></li>
<li><a href="https://play.google.com/store/apps/details?id=com.revolut.business">Revolut Business</a></li>
<li><a href="https://play.google.com/store/apps/details?id=com.mcdonalds.app">McDonald's</a></li>
<li><a href="https://play.google.com/store/apps/details?id=com.ubercab.driver">Uber Driver: Drive and Deliver</a></li>
</ul>
<p>In addition to leaving feedback for these apps on the Play Store, filing support
requests and leaving feedback on third party review sites. Ask them to stop banning
GrapheneOS and explain that it's a much more secure OS than what they permit which
does not lose any of the standard security model. Explain that they can use the
hardware key attestation API to verify that a device is running GrapheneOS to permit
it alongside an OS licensing Google apps as they do with the Play Integrity API
already. Make sure to push back against false claims that it has something to do
with compatibility or security issues. The only reason they aren't permitting it is
because we do not license Google Mobile Services (GMS) and these apps are enforcing
Google's business interests rather than security.</p>
</article>
</main> </main>
{% include "footer.html" %} {% include "footer.html" %}
</body> </body>