logoalt Hacker News

microtonalyesterday at 2:14 PM2 repliesview on HN

Every Android system support remote attestation. It's part of AOSP. Google just decided not to use it, because Play Integrity allows them to lock in phone manufacturers and force them (per leaked agreements) to preinstall a bunch of Google apps and require to run Play Services and some other components privileged on the system.


Replies

ValleZyesterday at 4:14 PM

Play Integrity checks if app was tampered with. Hardware attestations can only guarantee key's source and cannot be used to check app integrity.

show 1 reply
seba_dos1yesterday at 2:40 PM

Something being in AOSP doesn't mean your distro has to retain it. Besides, the world doesn't end on Android systems.