this post was submitted on 16 Mar 2026
686 points (98.7% liked)

Open Source

45438 readers
1061 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 6 years ago
MODERATORS
Cloak@lemmy.ml
kevincox@lemmy.ml
CrypticCoffee@lemmy.ml
Lettuceeatlettuce@lemmy.ml
686
Paying without Google: New consortium wants to remove custom ROM hurdles creating an open source alternative to Google Play Integrity (www.heise.de)
submitted 1 day ago by Argyle13@lemmy.world to c/opensource@lemmy.ml
47 comments fedilink hide all child comments
 

Pay securely with an Android smartphone, completely without Google services: This is the plan being developed by the newly founded industry consortium led by the German Volla Systeme GmbH. It is an open-source alternative to Google Play Integrity. This proprietary interface decides on Android smartphones with Google Play services whether banking, government, or wallet apps are allowed to run on a smartphone.

you are viewing a single comment's thread
view the rest of the comments
[–] beyond@linkage.ds8.zone 41 points 15 hours ago (3 children)

GrapheneOS is critical of this initiative here and I think their criticism has merit. This simply moves the gatekeeper from Google to a handful of OEM's who won't let you use anything other than their blessed OS's.

[–] gandalf_der_12te@discuss.tchncs.de 1 points 45 minutes ago

I'd say if you have more alternative gatekeepers, that means you have more options and that gives the user more power (to choose).

[–] Delascas@feddit.uk 22 points 14 hours ago (1 children)

Has the GrapheneOS team ever, once, been supportive of ANY other custom ROM initiative? I ask this as someone with both a GOS Pixel10 and a FairPhone 6 running /e/ on my desk this week.

For as good as their security approach is, their constant shit talking of others also making efforts to free us from big tech helps no-one.

Oh the irony of using the phrase "blessed OS's" coming from the GOS camp.

[–] detren@sh.itjust.works 10 points 13 hours ago

Yeah it seems they really let perfect be the enemy of the good.

[–] potustheplant@feddit.nl 5 points 14 hours ago (1 children)

Agree. This type of systems are not even necessary.

[–] 20dogs@feddit.uk 5 points 2 hours ago

One or more neutral organizations could exist certifying devices and operating systems without providing a centralized API. Those organizations could simply provide signed releases with the roots of trust, revoked keys and operating system key fingerprints. Apps could use multiple different certifying organizations. This is already something Android's hardware attestation API fully supports today.

Then why doesn't GrapheneOS offer that alternative to banks etc