· 277 comments · 311 replies
In the README, the following is listed:
App and device verification based on Google Play Integrity API and Apple App Attestation
I would like to strongly urge to abandon this plan. Requiring a dependency on American tech giants for age verification further deepens the EU's dependency on America and the USA's control over the internet. Especially in the current political climate I hope I do not have to explain how undesirable and dangerous that is.
Furthermore I am surprised this is considered an important next step, given apps like the Dutch identity app Yivi (who has no such dependency) already exist and can be used for age verification by the government just fine (on the few select platforms that work with it). Yivi is even available on Open Source app stores like F-Droid.
I think Yivi's existence should be sufficient proof that Google Play Integrity integration is unnecessary.
Yivi (formerly IRMA) homepage: https://yivi.app/en/
0 replies
0 replies
In addition, tying age verification to specific operating systems and their vendors (large American tech companies) violates two of the three principles listed elsewhere in this org:
0 replies
0 replies
Digital sovereignty is a necessary step to reduce the risks of data processing. There should be no dependencies for external services from third parties at all since each one adds a whole ecosystem of potential security issues.
0 replies
This is insane, what's the threat model? Someone remotely exploiting a device to steal proof of age of majority just to watch p__n (most common use case)? Is it even realistic? Why does this service need an app at all? Just create a modern web app, maybe even leveraging Digital Credentials API. I'm tired of app-for-everything.
0 replies
This happens because those who draft the technical specifications don't know how the technologies they propose work.
As I've explained elsewhere, this is ridiculous. Here's a brief excerpt from one of my posts elsewhere:
It's incredible that the European Commission sanctions Google for abuse of dominant position and asks to open the operating system to other stores to allow "free" competition and you [the writer of technical specifications] impose the use of tools that exclude the free choice of the user and give to Google all the power of choice, that's really INCREDIBLE...
There are dozens of ways to secure these apps' certificates without using proprietary systems.
Not to mention that Play Integrity systems are 100% illegal.
0 replies
There are dozens of ways to secure these apps' certificates without using proprietary systems.
Does it need to protect those certificates at all? Maybe I'm too naive, but couldn't this simply be implemented by verifying random challenge signed by a national identity provider?
Avoids having to protect the signed challenge at all since it's single use, scheme is similar to authenticating with SSH or WebAuthn. I haven't checked the architecture thorough, perhaps does something similar in the end with more bloat in between.
9 replies
Perhaps the logical conclusion would be that strict age verification just isn't a useful thing to try, and instead parents should be encouraged to actually make use of the client-side filters that pretty much all smartphones have. I've made that argument here.
I agree, however given the people* currently see the internet helped by certain incidences (*cough* Roblox *cough*) I'm not very hopeful that this view will change in the near future. Maybe it could change once the system is implemented and fails horribly but that will take time.
* Note: With "people" I don't just mean politicians. I've heard this from clueless parents as well as people from the "I've nothing to hide"-crowd that truly believe there is no way this could ever go wrong.
0 replies
0 replies
Getting access to a website as a EU citizen by accepting the TOS of EU-penalized American megacorp is peak 1984.
0 replies
Besides the privacy issues, this feels like South Korea's IE6 problem back in the days, everything was so tied and dependent on it, that they couldn't get rid of it. But I guess we are just humans repeating mistakes, getting influenced by lobbyists, uninformed people, people who can't imagine how things will look like in 10 or more years
0 replies
This would be massive hinderance to all South EU states, where adoption of non google phones is large.
This would be also massive dependency on google.
Furthermore, why on earth are you building digital ids but then not doing IDPs, then forcing users to use some extra app for agecheck... they and their OS maintains...
It is bad UX, it causes issues, not sure if adds any security.
0 replies
I work in cybersecurity and this is a privacy and security nightmare. Just stop.
Using a EU-controlled website with national credentials like it is proposed here #18 is the only reasonable solution.
Or maybe just do not implement this at all. People are going to go to p*** websites a way or another anyway.
0 replies
How can any form of government enforce anything like this against Linux users installing a distro that entirely ignores this on existing unlocked hardware? If global laws requires all computer to be hardware locked to the vendor's OS tomorrow, instantly "pre-ban" machines would gain in resale value and this would keep many of them out of the trash. It would take longer for them all to electromigrate to death than the politicians behind the ban would be in office
1 reply
Even though it would make no sense and the only real solution is education, do you have an indication that the politicians don't like this locking, or at least don't want to enforce it? The Chat Control text (which would require this, presumably) is written with the assumption of such a locked stupidphone.
In the case of Linux distros I was thinking desktops/laptops not phones. I haven't personally heard of outright legislation to ban unlocked bootloaders in new hardware anywhere. Even if EU Chat Control requires rather than assuming this, that's phones and desktop computers are at this time almost never sold with non-unlockable bootloaders except maybe by Apple. In the case of Apple I've never used their stuff so that's a "don't know" on my part. Here's the kicker: some EU governments are trying to get their office desktops off Windows due to Microsoft being a US monopoly and part of Trump's fascist regime, and all such governments themselves will need unlockable bootloaders. Also server hardware has to be able to run Linux as Linux is the dominant server side OS. Thus there will always be at least one source of hardware that does not enforce political restrictions on the user's OS whether this be chat control, DRM, or anything else.
1 reply
Without mandatory scrappage, superseded hardware especially from smaller data centers predating such rules would have considerable resale value, especially if this is a black market.
1 reply
If all new hardware becomes locked I get no choice but to stockpile pre-ban hardware. I refuse to let the verified/censored version of the Internet into my life. Would go all the way offline before using ID if I really had to
1 reply
A European company called Volla is now pushing for their "Unified Attestation" service to replace Google Play Integrity, but their product still has all the same problems as Google's version does. It still bans rooting your device and restricts what OS you are allowed to run.
The GrapheneOS team went into detail on the various issues here: https://grapheneos.social/@GrapheneOS/116200110686604617
1 reply
Let's be honest.... Normal people who root their devices won't try to crack or tamper the app or bypass protections. Also.... If you care about the files of the app in /data/data/com.package.name you could just encrypt the most important ones even with a key generated during the first open of the app which will use entropy. What can do root now? Is the problem stuff like http toolkit? Detect it and in case block it or block adb, but even if someone can know what calls the app does, the app is opensource anyway so there is no point in doing it... You see? What is the point of fighting root? Are you scared that someone could replace the ID or values used during verification process? Don't store them but use identifiers and immediately drop them after verification is successful. This way unless the person provides a valid ID immediately they will fail to verify. Play integrity is unnecessary, are you scared of people tampering the apk itself? Add signature verification to the apk, if that's tampered app will fail to start displaying signature doesn't match. Are you scared someone will anyway beat the app internal signature system? Verify it as well by a server check. Again, play integrity being useless.
7 replies
If the key is on your smartphone, some people are going to manage to extract theirs at some point no matter what security through obscurity attestation stuff is in the way...
You see? What is the point of fighting root? Are you scared that someone could replace the ID or values used during verification process?
They don’t want people to pull the private key and host a fake age verification service where you can download or buy age attestation from a server.
As I said, if this key would be server side there would be no way of replacing it
At this point just make it server-side, instead of turning citizens' "phones" into your servers and sheep.
I mean, the whole thing is public knowledge
"Star of That ‘70s Show and a host of Hollywood hits, 45-year-old Kutcher resigned as chairman of the Thorn board in mid-September amid uproar over a letter he wrote to a judge in support of convicted rapist and fellow That ‘70s Show actor Danny Masterson, prior to his sentencing."
Did my comment about my 1984 comment getting removed really get removed??
Damn.
Tells me all I need to know.
1 reply
1 reply
Remember that EU actions, for better or worse, are imitated all over the world.
1 reply
If the concern is Russian farms offering automated ID verification for a cost, do note that this "security" can and will be spoofed, with a new method appearing almost a few days after the current one is patched. It will only hurt legitimate users.
23 replies
Remember the goold old days where biometrics and creepy surveillance were seen as dystopian? 😂
Talking about effectiveness: the only way to make sure someone does not kill someone else is to cut his arm and legs, remove his teeth too, so this is probably what nukeop wants too
My opinion is "fuck this shit"
A reason for that is "it will never work"
Another is "they're not doing it for "the kids""
WHy not use something like this?
Unified Attestation??
Single backend · Offline verification · No device IDs
Attestation that feels boringly reliable.
Unified Attestation is a free, open-source alternative to Google Play Integrity. It delivers short-lived integrity tokens signed by a single backend, verified offline by app servers, and issued via a privileged Android system service. It can live alongside Play Integrity, and it’s simple to integrate for app developers on both the app and server sides.
An initiative by Volla Systeme GmbH.
Volla Systeme GmbH is a Gemran based Company so European what means that this would make more sense as using a American controlled services that locks people into the Stock roms that can and will harvest data with no option to disable data harvesting, forced cloud account to install applications over the intended way and other anti features the EU doesn't stand for based on the Privacy regulation (i am just assuming and hoping here).
11 replies
yes and this push for age verification is mostley there just to gather clean and veriefied/trusted data and also making potential hacks that already happened worse by also having such sensitive data everywhere, this aproach with zero knowledge proofs is a better way but the requirement of having to use a non private smartphone (a device using play services that can and probabbly will ex filtrate any data from the device) meanwhile having the 30 proofs that are technically "private" but in reality are not due to the play integrity enforcement.
there should be a fork that removes all Antifeatures like Play integirty and face scanning as that also requires api's that are only found in google play services or only work on vanilla play services device and don't or function worse on alternatives like microG.
Unified Attestation has the same problems. It just puts a different group of companies in charge doing the same bullshit that play integrity does.
there should be a fork that removes all Antifeatures like Play integirty and face scanning as that also requires api's that are only found in google play services or only work on vanilla play services device and don't or function worse on alternatives like microG.
There cannot be a fork. Paradoxically, the source is libre, but you can't modify it in practice, because it relies on some attestation to work and this is enforced by all parties.
The truth is that these people don't give a fuck about you and everything they do is for the single purpose of screwing you, and maybe make some profit along the way
Very true. Who gives a damn about user privacy, when they can make trillions and beyond fucking out of the data. Also, none of this is about helping a child stay away from p**n, rather, gaining full control over everything citizen does. Safety my foot.
FYI: India already fucks with user privacy beyond imagination, and we Indians are so happy since we can spend 247365 behind facebook, instagram and shit.
Whatever the "security measures", if a child wishes to access a restricted website, they can just... bribe someone into scanning the QR code on their behalf. It is not more secure with the "attestation". It only hurts legitimate users who want freedom.
0 replies
Will it work on a Nokia 3310, or on my laptop? I don't own a smartphone.
0 replies
A big problem I see here is that the EU commission requires people
living in the EU to submit to private US corporations. This kind of
undermines literally everything else - all the data privacy becomes
instantly nullified and void if the EU commission already hands over
our data to other entities. We could simply dismiss the whole EU
infrastructure since Washington controls all policies in this regard.
Trump merely amplifies and extends this problem here, but the
underlying issue remains even with "friendlier" presidents in
charge. In addition I kind of suspect that this is also a wanted
outcome by the EU commission anyway, for some reason, so I
don't hold only the USA responsible here. It takes two to tango.
Also, this attempts to require of everyone to have a smartphone
in the first place. Which constitution mandated this ever?
0 replies