banking-apps-compat-report icon indicating copy to clipboard operation
banking-apps-compat-report copied to clipboard
verified publisher icon PrivSec-dev

Play Integrity - Info and next steps

Open akc3n opened this issue 2 years ago • 1 comments

Banking apps usage guide

[!IMPORTANT]
If you receive a warning from your banking app indicating that your device may be INSECURE, JAILBROKEN, or ROOTED, this is usually due to the Play Integrity API. Specifically, your device fails to pass MEETS_DEVICE_INTEGRITY and/or as well as MEETS_STRONG_INTEGRITY.

[!TIP] Your phone will notify you if the app uses the Play Integrity API.

As of now, there are no direct solutions available to users. However, you can help by contacting your bank. Inform them of this problem and suggest they refer to the Attestation Compatibility Guide for their developers.

Here's a sample template you can use when reaching out:

Hi,

I'm a user of your Android banking app. Unfortunately, the app doesn’t work on my device and displays an error message.

It appears that your app is using Google's Play Integrity API to block usage on operating systems that are not certified by Google.

This measure does not improve security, as Google certification of the operating system does not contribute to that. Very old devices with serious, unpatched vulnerabilities still pass these checks, while GrapheneOS, the operating system I use on my device, is on the latest security patch level and meets stringent security requirements.

It is possible for your app to support GrapheneOS while still keeping these checks. Please forward the following guide to your Android development team, which explains what needs to be done:

https://grapheneos.org/articles/attestation-compatibility-guide

GrapheneOS is used by hundreds of thousands of people, many of whom are your customers. You should consider supporting its ever growing user base.

If your team has any questions, you are welcome to contact the project at [email protected]. They will be more than happy to provide all the necessary details and assist you with the matter.

Kind regards,

[!TIP]
This pinned issue might not always be as frequently up-to-date. For the most current and updated information, please refer to the primary source thread App compatibility with GrapheneOS.

akc3n avatar Dec 02 '23 00:12 akc3n

Peak Credit Union, formerly know as Twinstar Credit union and NW Community Credit union

steven1989pdx avatar Nov 02 '25 07:11 steven1989pdx