GrapheneOS [Unofficial]

3534 readers

1 users here now

Official announcements from the GrapheneOS project.

Subscribe to this community or add it to your RSS reader in order to be notified about new releases and important updates.

Search c/GrapheneOS.

For discussions about the GrapheneOS project, visit our forum or join our community chat.

Our Code of Conduct.

GrapheneOS is a privacy and security focused mobile OS with Android app compatibility. This is a community based around the GrapheneOS projects including the hardened Android Open Source Project fork, Auditor, AttestationServer, the hardened malloc implementation and other projects.

Please use our official install guides for installation and check our features page, usage guide and FAQ for information before asking questions in our discussion forum or chat rooms to get as much information as possible from what we've already carefully written/reviewed for our site.

Contact the moderators of this community if you have any questions or concerns.

founded 4 years ago

MODERATORS

KindnessInfinity@lemmy.ml

maade@lemmy.ml

akc3n@lemmy.ml

treequell@lemmy.world

other8026@lemmy.ml

Metr0pl3X@lemmy.ml

akc3n@grapheneos.social

Skorp@sh.itjust.works

Swissquote Launches Official Support For GrapheneOS (grapheneos.social)

submitted 4 months ago by KindnessInfinity@lemmy.ml to c/grapheneos@lemmy.ml

4 comments fedilink hide all child comments

Swissquote has launched official support for GrapheneOS for their main app instead of it only being available for Yuh:

https://play.google.com/store/apps/details?id=com.swissquote.android

What’s new

We now officially support GrapheneOS!

Bug fixes and minor improvements

They're verifying GrapheneOS via hardware attestation.

The code added for verifying GrapheneOS would be easy to extend on the server side with support for other alternate operating systems. They could also support future non-Google roots of trust to permit hardware not certified by Google. It still restricts what can be used but is at least extensible.

More apps using the Play Integrity API should implement this. It can initially be integrated to allow either the Play Integrity API or hardware attestation. Hardware attestation can be used to fully replace the Play Integrity API at the expense of legacy device support but that's not mandatory.

See https://grapheneos.org/articles/attestation-compatibility-guide for more information. Apps implementing this need to add new verified boot key fingerprints when GrapheneOS adds support for more devices since per-device keys are important for security. For our own devices, we could simply have our own attestation root of trust.

you are viewing a single comment's thread
view the rest of the comments

[+] jet@hackertalks.com 8 points 4 months ago* (last edited 4 months ago) (1 children)

[removed by mod]

[–] hitmyspot@aussie.zone 2 points 4 months ago (1 children)

Nfc payments without Google?

[–] Metr0pl3X@lemmy.ml 2 points 4 months ago* (last edited 4 months ago) (1 children)

Is that a question specific to Swissquote or in general? If in general yes NFC payments are available on GrapheneOS so long as your bank or provider provides their own implementation such as ImagineCurve's Curve Pay.

[–] hitmyspot@aussie.zone 1 points 4 months ago* (last edited 4 months ago) (1 children)

All banks I've looked at depend on Google pay. I'm in Australia. I was hopeful for revolut but they use Google for app certification.

My understanding with nfc payments is the bank needs to implement themselves rather than use Google pay, which most don't, even if it's technically available.

I haven't seen curve pay. I'll look into it. I have an android watch. I assume it would work fine with graphene os. I wonder if the Google pay implementation on it would work without Google pay on my phone?

Edit: It looks like curve is not available in Australia but it supports revolut which is available in Australia so there may be a workaround.

[–] Metr0pl3X@lemmy.ml 3 points 4 months ago

Correct, my message was to confirm that payments can and do work on GrapheneOS so long as there is an implementation available to you.

Now that you've mentioned the watch if it is a WearOS device capable of Google Pay then yes it can be used for payments independent of having Google Pay on the handset.