← Back to context

Comment by lern_too_spel

10 days ago

No evidence is given that they won't implement non-Google remote attestation solutions like https://attestation.app/about

Indeed, the bug links to another bug where the author says that it isn't restricted to Play Services remote attestation and recently followed up with a documentation update making that clear. https://github.com/eu-digital-identity-wallet/eudi-app-andro...

17 comments

lern_too_spel

Reply
Hizonner  10 days ago

> No evidence is given that they won't implement non-Google remote attestation solutions like https://attestation.app/about

Unfortunate that it doesn't matter, because they're not going to accept anything that's not attested by some authority.

Attestation in itself is a bad thing, guaranteed to be horrifically abused in ways far, far worse than any problem it could possibly solve. You do not need to know what software I am running, period.

  • lern_too_spel  10 days ago

    > You do not need to know what software I am running, period.

    Your employer needs to know if your devices connected to its network have been rooted without your knowledge.

    In any case, this is a completely different discussion from what OP alleged, which I hope we can all agree is completely false.

saubeidl  10 days ago

No evidence is given they will.

  • lern_too_spel  10 days ago

    You replied after I had updated the comment to provide said evidence.

    Adding to what I said earlier, this isn't even an app that any EU member state will use. It's just a PoC, as it says in the README. https://github.com/eu-digital-identity-wallet/av-app-android...

    Unfortunately for the authors, the pitch forks are already out, and the mob is on the march. It's too bad that HN is contributing to it.

    • antonvs  10 days ago

      It's good that there are strong reactions to dystopian work like this.

      It's solving a problem that doesn't need to be solved using a solution that's fraught with risks.

      The authors chose to spend their time helping governments censor information, removing choice from individuals, and the solution they choose to work on is a bad one. Any criticism they receive is well-deserved.

      1 reply →