Comment by ulrikrasmussen

That's not actually what the article says, the article said that the rollout of MitID first included the app, and that the alternatives were made available later. The alternatives were always part of the plan. The lobby group mentioned were complaining because MitID was replacing an existing solution, NemID, which offered the alternatives. For a while during the rollout you could use both methods of identification, and the lobby group wanted to wait with retiring NemID until the alternatives for MitID were available. The old solution was not replaced due to security issues but because the vendor lost the project when the contract ran out.

There are two discussions here, the technical and the one concerned with freedom. I am concerned with both, and I think we need a compromise which doesn't throw out the latter in order to obtain a perfectly secure model.

My concern is not only with ad removal, that was just an example. My concern is digital autonomy in general, and the issue of giving an American company the power to decide what software users around the world are allowed to execute. They can censor software they don't like, and rogue governments can pressure them to censor software that THEY don't like. E.g. the EU who might want to prevent people from installing E2EE apps soon when Chat Control is rolled out.

There are good technical security arguments for phone based solutions over the alternatives, but it doesn't mean that the alternatives are worthless, just that the users have to be a bit more vigilant. I think that is a better compromise in the interest of protecting freedom and democracy.

We are some of the few people who can understand the long-term implications of the different technical solutions and the potential tools it will give private companies and governments to suppress people. If we are not advocating for freedom over convenience, then who will?