What do you mean? Graphene OS devices DO support Hardware-based attestation (AOSP standard), they just don't support STRONG or DEVICE Play integrity checks.
Now developers can choose to support it (and some of the developers do!) aside or apart of google "attestation". How it should be, reliable providers should be able to certify it equally firmly.
Google should be forced to accept a valid hardware-attestation certification as their own.
GOS have raise the issue with the European Commission and I hope Google will get fined and forced.
in quotes because it mostly confirms that google runs in the privileged mode and can't detect one of the issues. But google also gives a pass to many very old, insecure, rooted devices. It's a scam.
Now developers can choose to support it (and some of the developers do!) aside or apart of google "attestation". How it should be, reliable providers should be able to certify it equally firmly.
Google should be forced to accept a valid hardware-attestation certification as their own. GOS have raise the issue with the European Commission and I hope Google will get fined and forced.
in quotes because it mostly confirms that google runs in the privileged mode and can't detect one of the issues. But google also gives a pass to many very old, insecure, rooted devices. It's a scam.