-
Well I'm not sure but given what I have published above, It could mean that it can only work by design on an un-compromised google certified devices ( I've read that there exists so-called technologies as "Android hardware-backed keystore" and "Trusted Execution Environment" , could the app possibly rely on that? ). So maybe it's not working with microG because they don't want it to, because they want the app to run only on a so-called "safe envieronement" provided by google.
-
@pparent said in French ID app interoperability.:
so-called "safe envieronement
We can say that ! Because if you read all the precautions they take concerning the app, it's a bit like the instructions for a medication: once you've read it, you no longer want to take the medication at all!
-
@pparent said in French ID app interoperability.:
Well I'm not sure but given what I have published above, It could mean that it can only work by design on an un-compromised google certified devices ( I've read that there exists so-called technologies as "Android hardware-backed keystore" and "Trusted Execution Environment" , could the app possibly rely on that? ). So maybe it's not working with microG because they don't want it to, because they want the app to run only on a so-called "safe envieronement" provided by google.
This kind of stuff is happening more and more. Even apps like the ChatGPT app for Android require "Play Integrity." It's an API that needs to be made illegal, and a lot of national apps are relying on it too. For example, the Icelandic app AuΓ°kenni used to work without it, but now your device has to be "secure" in order to use the app. Thankfully, in that case, there is an alternative method of authentication using SIM Toolkit.
MicroG is able to execute SafetyNet/Play Integrity, but the device has to have the bootloader locked and a bunch of other stuff. And depending on level of attestation required by the app, it may or may not actually run.
-
-
Hello,
Did anyone get any reply from contact@france-identite.gouv.fr ?
I am thinking it should be studied the possibility of filing a complaint with the "Defenseur des droits", because I think there are various things about that app that probably do not respect the legislation, given that it is only available for Google and Apple.
Any thought on that?
-
@pparent . Not directly about your question but do you know https://uattest.net/ , very nice Volla initiative. As you are a developper who offers great job and apps, this may interest you
-
gp@mono:/shared/uattest/Backend$ npm install npm warn deprecated inflight@1.0.6: This module is not supported, and leaks memory. Do not use it. Check out lru-cache if you want a good and tested way to coalesce async requests by a key value, which is much more comprehensive and powerful. npm warn deprecated glob@7.2.3: Glob versions prior to v9 are no longer supported npm warn deprecated supertest@6.3.4: Please upgrade to supertest v7.1.3+, see release notes at https://github.com/forwardemail/supertest/releases/tag/v7.1.3 - maintenance is supported by Forward Email @ https://forwardemail.net npm warn deprecated superagent@8.1.2: Please upgrade to superagent v10.2.2+, see release notes at https://github.com/forwardemail/superagent/releases/tag/v10.2.2 - maintenance is supported by Forward Email @ https://forwardemail.net npm warn deprecated rimraf@3.0.2: Rimraf versions prior to v4 are no longer supported npm warn deprecated glob@8.1.0: Glob versions prior to v9 are no longer supported npm warn deprecated @humanwhocodes/config-array@0.13.0: Use @eslint/config-array instead npm warn deprecated @humanwhocodes/object-schema@2.0.3: Use @eslint/object-schema instead npm warn deprecated eslint@8.57.1: This version is no longer supported. Please see https://eslint.org/version-support for other options. added 595 packages, and audited 599 packages in 3m 184 packages are looking for funding run `npm fund` for details 19 vulnerabilities (1 low, 8 moderate, 10 high) -
@pparent no response, sorry.
-
-
as an american i can safely say we are ALL against this ....the states that are trying to implement this are getting banned by linux distros .....we will not comply we see it for what it is ....tyranny ...."child safety act' ....coming from the same congress that votes NOT to go after the epstein list perpetrators ...themselves ....so there's that ....same thing in all the other countries i bet .....so im thinking they can all go eat a bag of dicks lol ...thats all i have to say about that .....im not going to not serve states that do it im ...going to encourage people to outright "break the law" and make my distro available to everyone .....im too poor to sue and i got street credit so i wont have a bad time in prison and im armed to the teeth .....bring it
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better π
Register Login