Replying to Avatar calle

Not sure if I get it right because I only read the translated text but it sounds like device and app level security which is something that can only really work if there's a trusted attestation as to which software is running at your counterparties device I suppose?

My knowledge on this is very limited and I know that attestation is a thing but I don't know whether you wouls need to use apple or android-specific security features for it. Some banking apps seem to be doing this and also therefore don't run on modified OS etc.

More insights on this would be welcome.
Avatar
Servidor Público em Regime CLT do Ancapistão 9mo ago

on Android, you can have some code to show the current apk checksum and also to show who signed the apk final release build or if the apk is in release or debug, this info can be used to notify the recipient of the eCash Token.

Any modification to an apk would have an invalid checksum and a wrong signature.

Reply to this note

Please Login to reply.

Discussion

Avatar
Servidor Público em Regime CLT do Ancapistão 9mo ago

still there are ways to circumvent it, man this sucks.