1
0
mirror of https://github.com/PrivSec-dev/privsec.dev synced 2024-11-17 20:11:33 -05:00
privsec.dev/content/posts/android/Banking Applications compatibility with GrapheneOS.md
2022-11-09 01:39:17 -05:00

31 KiB
Raw Blame History

title date tags author
Banking Applications Compatibility with GrapheneOS 2022-01-26
Applications
Android
akc3n, Tommy

This is a list of banking applications known to work with GrapheneOS.

Banking apps are a very problematic app for security and privacy focused operating systems, or even alternative OSes, due to the app being incompatible with majority of hardening, having a hard dependency on Google Play services, or require passing SafetyNet ctsProfileMatch and basicIntegrity.

GrapheneOS passes SafetyNet basicIntegrity, but it is not certified by Google so it does not pass ctsProfileMatch.1

GrapheneOS's usage guide on banking apps.


List of Banking Apps

Australia

Austria

Belgium

Brazil

Canada

Czech Republic

Denmark

Finland

France

Germany

Ghana

Hungary

India

Italy

Kazakhstan

Lithuania

Netherlands

Norway

Poland

Portugal

Romania

Serbia

Singapore

Slovenia

Spain

Sweden

Switzerland

Taiwan

Ukraine

United Arab Emirates

United Kingdom

United States


List of Submitted Banking Apps

Here you will find a current list of submitted Banking Apps that work on GrapheneOS via this projects issue-tracker.

Submit a Banking App

Report a banking app's compatibility on GrapheneOS

Please use this issue form to submit a report on the banking app that you use on GrapheneOS:

SUBMIT REPORT


Notes

If you have any issues with what is listed on this site or about this project page, you may open an issue on this issue-tracker.

  • GrapheneOS has a detailed guide for app developers on how to support GrapheneOS with the hardware attestation API. Direct use of the hardware attestation API provides much higher assurance than using SafetyNet so these apps have nothing to lose by using a more meaningful API and supporting a more secure OS.

GrapheneOS users are strongly encouraged to share this documentation with app developers enforcing only being able to use the stock OS. Send an email to the developers and leave a review of the app with a link to this information. Share it with other users and create pressure to support GrapheneOS rather than locking users into the stock OS without a valid security reason. GrapheneOS not only upholds the app security model but substantially reinforces it, so it cannot be justified with reasoning based on security, anti-fraud, etc.