Comment by t_mahmood
4 hours ago
In recent r/Android update post, this is put at the very last, I believe this completely verifies that Google is implementing hardware attestation.
And, r/android being mostly google worshipers won't say anything, but also it's difficult to parse through such a huge ai generated post.
New data isolation and verification tools
Expanded Binary Transparency: Anyone can now verify that the critical software layers on their device were actually authorized by Google and haven't been secretly modified by attackers. We are publishing a public, append-only ledger that provides cryptographic proof that production Google applications and Mainline Modules are the authentic versions released by Google. If a Google-signed app isn’t on this ledger, we didn’t intend to release it.
Android OS verification: We have seen some bad actors begin to distribute malicious, unofficial versions of the Android OS that secretly compromise device integrity. To combat this, we are introducing Android OS verification in Android 17. Launching initially on Pixel devices, this feature helps you verify that your device is running an official, widely distributed build.
Keeping your ambient data confidential and isolated: Android 17 introduces AISeal with pKVM which, along with Private AI Compute, creates an isolated, verifiable, hardware-backed environment where ambient data can be processed securely
https://old.reddit.com/r/Android/comments/1tb8dxv/new_featur...
https://www.reddit.com/r/Android/comments/1tb8dxv/new_featur...
https://blog.google/security/whats-new-in-android-security-p...