ijeff@lemdro.idM to Android@lemdro.idEnglish · 1 year agoGoogle’s “Web Integrity” Android API could kill “alternative” media clientsarstechnica.comexternal-linkmessage-square45fedilinkarrow-up1240arrow-down16cross-posted to: [email protected]
arrow-up1234arrow-down1external-linkGoogle’s “Web Integrity” Android API could kill “alternative” media clientsarstechnica.comijeff@lemdro.idM to Android@lemdro.idEnglish · 1 year agomessage-square45fedilinkcross-posted to: [email protected]
minus-square0xD@infosec.publinkfedilinkEnglisharrow-up2arrow-down6·1 year agoThat is just standard and a completely sensible security measure for preventing people from tampering with an application. It cannot replace proper, server-side security measures but is a big step. Especially for stuff like banking applications.
minus-squareBaldDude@sh.itjust.workslinkfedilinkEnglisharrow-up9·edit-21 year agoI never really understood that: If I’m using my browser to do banking via the website, Having root privileges and tampering with the Browser running the applications is not an issue. If i use the banking app, Having root privileges suddenly become a problem. –> To me, it doesn’t look like the problem is technical, but that users are accepting things on mobile that they wouldn’t accept on a PC.
That is just standard and a completely sensible security measure for preventing people from tampering with an application. It cannot replace proper, server-side security measures but is a big step. Especially for stuff like banking applications.
I never really understood that:
If I’m using my browser to do banking via the website, Having root privileges and tampering with the Browser running the applications is not an issue.
If i use the banking app, Having root privileges suddenly become a problem.
–> To me, it doesn’t look like the problem is technical, but that users are accepting things on mobile that they wouldn’t accept on a PC.