isn’t this just asking your age when the OS is installed? in that case can’t they just install any non-hacked distro and lie? there’s no verification, is there?

the software is open source. we can verify it doesn’t do anything bad. the server is what you cannot trust.

Worst case scenario where Google makes it extremely difficult going forward, what is the hard part about just never rebasing onto future work from Google?

From what I’ve seen there hasn’t been significant core work on Android for a long time. It’s been mostly changing from rounded corners to square corners to rounded corners, or shoving AI into every nook and cranny.

I’d think a small dev team like Graphene could maintain their AOSP fork moving forward.

IDK, I’d think the best path forward would be to just fork Android and move on from there. That’s what Graphene OS already does. Just standardize on Graphene OS for everything and get them more devs / resources.

Why do banks need a hardware attestation, out of curiosity? I’d assume that banking apps are just clients so all that matters is if they have creds or not.

traction with Graphene

What kind of traction? Is it missing something? Or do you just mean more developers behind it?

I’m not even sure what incentive they would have. We already have a huge problem with citizens not voting because they think their vote won’t change anything. Is anyone going to think “I’m going to risk going to federal pound-me-in-the-ass prison for me to spend my free time filling out a ballot box which will have a 0.000001% chance of having any effect”?