zlacker

> Even when using it right, you would have to block third party builds

Unless you have an obvious and accessible way of getting secure third party builds whitelisted, this is still a very anti-user approach, which is not justifiable unless the user of the device isn't its owner (like with company-owned work phones).

replies(1): >>lern_t+Q4

>>franga+(OP)
That's up to the service to decide on the appropriate level of security risk in whether they allow unknown builds. They already don't allow custom builds on any other mobile OS, so this is really the best you can get as a user. What is your proposed solution?

replies(2): >>justin+dq >>Dylan1+2X

>>lern_t+Q4
> They already don't allow custom builds on any other mobile OS ...

Keep in mind that Pinephones and similar are a thing. Lots of people are hoping they don't fizzle out and die off like previous "open" phone projects. :)

replies(1): >>lern_t+os

>>justin+dq
And Pinephones and similar don't have apps for these services that require attestation and never will. If some allow web access without build attestation, that works on custom Android builds as well.

>>lern_t+Q4
> What is your proposed solution?

Ban attestation methods that owners can't control.

replies(2): >>hoffs+ZM1 >>lern_t+GHm

>>Dylan1+2X
What does that even mean? It sounds like your proposal makes attestation pointless since owner can attest in whatever way they want.

replies(1): >>Dylan1+oD3

>>hoffs+ZM1
It only makes it pointless for DRM purposes.

If a company wants control over devices they own, that's still fine.

>>Dylan1+2X
So regulation. I can get into that. Until such regulation exists, phone manufacturers have no incentive to maintain different SKUs.