this post was submitted on 16 Mar 2026
323 points (98.2% liked)

Open Source

45424 readers
1090 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 6 years ago
MODERATORS
Cloak@lemmy.ml
kevincox@lemmy.ml
CrypticCoffee@lemmy.ml
Lettuceeatlettuce@lemmy.ml
323
Paying without Google: New consortium wants to remove custom ROM hurdles creating an open source alternative to Google Play Integrity (www.heise.de)
submitted 15 hours ago by Argyle13@lemmy.world to c/opensource@lemmy.ml
33 comments fedilink hide all child comments
 

Pay securely with an Android smartphone, completely without Google services: This is the plan being developed by the newly founded industry consortium led by the German Volla Systeme GmbH. It is an open-source alternative to Google Play Integrity. This proprietary interface decides on Android smartphones with Google Play services whether banking, government, or wallet apps are allowed to run on a smartphone.

you are viewing a single comment's thread
view the rest of the comments
[–] Corngood@lemmy.ml 53 points 14 hours ago* (last edited 14 hours ago) (2 children)

Furthermore, a peer review process is planned, through which the consortium members will mutually check and certify their operating systems and smartphone or tablet models. “This is intended to create transparency and replace trust with traceability.”

Still doesn't sound very open.

I should be able to tell my bank to only trust devices running an OS signed by the grapheneos key, and more importantly I should be able to tell them to trust an OS signed by my key.

Edit: I don't mean to shit on this too hard. It might be the best next step.

[–] Dojan@pawb.social 9 points 9 hours ago* (last edited 9 hours ago) (1 children)

I don't get why it has to be that complicated anyway. I should be able to just give them my key, why does a OS or device vendor need to be a part of it? When I get a card I need to verify my identity somehow, times past that was me going to the bank, signing a form and showing my ID card. Fucking Tim Apple or Satya McGoogle didn't have a role in that, why should they now?

Sidenote; I know Satya Slopella is Microsoft but I don't frankly care to learn what the pedo in charge of Google is called.

[–] eleijeep@piefed.social 0 points 8 hours ago (1 children)

I don’t frankly care to learn what the pedo in charge of Google is called.

Blunder Pinochet. Or is it Sundial Pinoy. Or Thundercat Pyjamas.

[–] Dojan@pawb.social 2 points 8 hours ago

Compost. That's all they're good for.

[–] benagain@lemmy.ml 27 points 14 hours ago

It is kinda insane though that we've had public/private keys since the internet started walking and somehow we end up with all these over-complicated or pointless ways to use them.