Taken from the readme of the app on github:
The current release provides only basic functionality, with several key features to be introduced in future versions, including:
App and device verification based on Google Play Integrity API and Apple App Attestation
Additional issuance methods beyond the currently implemented eID based method.
These planned features align with the requirements and methods described in the Age Verification Profile.
There is an issue opened to remove this as it’s basically telling us that to verify our age in the EU an American corporation has the last word, making it not only a privacy nightmare but a de-facto monopoly on the phone market that will leave out of the verification checks even the fairphone (european) with /e/os.
Honestly I’m starting to understand hermits. I have to accept that I’ve become a digital hermit.
deleted by creator
Whats better than enshittification? Government powered enshittification!
Government MANDATED Enshitification
Fuck the play integrity API, Play Store and Google play services
There is a disclaimer though, which kind of brings hope:
This is an initial version of the software, developed solely for the purpose of demonstrating the business flow of the solution. It is not intended for production use, and does not yet include the full set of functional, security, or integration features required for a live deployment.
This makes me to thinkgof this solition as of a risk for now (high one, though, with modern approach of shipping PoCs)
Yes, but it also says that the integrity check through google will be added in the future. Reason why it’s not yet operative.
The way I understand it is that the app is not yet ready because integrity checks through google are not ready, not the other way around.
It also says that integrity check through google is a “key feature”.
Time to start a new Europe citizen petition!
If the EU is going to make software then I think they’d have to consider themselves a gatekeeper requiring people to make a third party authentication app using their API.
so yet another american company could cripple entire eu very easily?
That sounds illegal
I’m honestly surprised by the negative sentiment here. Government certified digital identity is the obvious solution to spam & online disinformation. In the short term bot farms will lose the ability to influence social media. In the long term it’ll allow us to distinguish real people from AI agents, true scientists from pseudo-scientists, actual journalists from state-sponsored fake-news spreaders. It’s a key technology that fediverse needs to survive in a world flooded by AI content. Finally it’s something that can save democracy from literally falling apart. Remember that democracy only works if citizens are well informed. Otherwise those who control the information are the true rulers.
It’s also complete bullshit that third party ROMs can’t get proper attestations. It’s a statement literally made up by the OP. Third part ROMs can get the keys. They just need to go through the attestation process (which BTW can be fully automated) and publish signed images for users.
Don’t like the existing integrity providers (Google, Apple)? Make your own. The system is designed to be flexible and not rely on single integrity providers. Or tell us how else you’d like to solve these serious and growing problems.
Sorry for the rant-y comment. I’m tired of people who only complain and nitpick.
