This is one heck of a thread, about one heck of a threat.

neil@mastodon.neilzone.co.uk

RE: https://grapheneos.social/@GrapheneOS/116550899908879585

This is one heck of a thread, about one heck of a threat.

anne@peekeend.nl

@neil yea f this

troed@swecyb.com

@neil GrapheneOS are doing their best to badmouth the only viable alternative we could hope to see adopted.

Unified Attestation

Unified Attestation is a free, open-source alternative to Google Play Integrity with offline verification and simple app + server integration.

(uattest.net)

neil@mastodon.neilzone.co.uk

@troed Based on what I know about UA, I share GrapheneOS's stance here.

troed@swecyb.com

@neil It's a fallacy to only accept a perfect solution and thus never be able to move the needle in the right direction.

As it is, the only attestation services accepted by European medical and banking institutions are US controlled. Moving the needle to having them be EU consortium controlled is a valid good step that brings actual benefits.

Then we continue moving the needle further.

neil@mastodon.neilzone.co.uk

@troed I've no desire for more DRM, or permissively licensed DRM.

simonzerafa@infosec.exchange

@neil

Wonderful. Looks like will need at least two phones. One which is approved and another that is private