Over the last three years I’ve had a lot of folks ask me questions about using GrapheneOS. Let’s answer them!
You must log in or register to comment.
To you know if wechat or alipay work? I need these while traveling. They use QR codes for payment and other services. I wish this took off everywhere as nfc payments are locked into only a few apps.
Use a separate phone for them. The Chinese state can not be trusted.
Does Android Auto still not work?
I started with graphene a few months ago and it worked from the beginning just following the instructions on the phone to enable it. That said I do recall aention of extra permissions for Bluetooth android auto, which I didn’t want. My car doesn’t support it over Bluetooth anyway so didn’t matter to me, but you may be interested in looking that up (I don’t recall the specifics).
It’s been working fine for me for months.
That’s great to hear, I think I’m jumping back to graphene
I really wanna switch to e/os or graphene (especially on Motorola), but in Denmark you need MitID to live in society and it only works on Android and iOS 😭
Well graphene is Android, could give it a try. Or maybe have a separate phone
I have a “kodeviser” device, works for all MitID purposes.
A draft of a draft of a plan that I just thought of right now.
I might just have to carry two phones lol. One is a small cheap phone just for all those pesky financial and governmental apps, and one main phone with graphene.
Your country has sold you to american companies
It rubs me the wrong way to have to resort to a burner like trash device with less scope/(security) features to handle the most sensitive things.
How about we force everyone to do all that only on Linux instead of Windows when on a desktop? Fuck this infra.
This may just be a me thing, but GrapheneOS works fine on my pixel 6a. Biggest problem is a few other privacy apps I keep installing and sometimes doing abnormal more private niche things only graphene can do anyway.
Same same. No Company Portal, but oh well
I’m glad to have found the banking app compatibility list from her FAQ and see that a few of the big banks in my country is proven working. This gives me hope of jumping ship from my S24U.
I couldn’t have predicted how much shittier Samsung was going to be when I weighed the S24U vs the Pixel 9/10 (the 10 was newer at the time of research thus expensive), as I put a lot of weight on the stylus the S24U have. Had I known that samsung were to
- Disallow bootloader unlock
- And soon in their android 17 update, close off fastboot functions IIRC (please correct me)
I would have bit the bullet getting the pixel 9 and installed graphene. I also got spooked off by overheating issues in hot climate countries and network issues. And in hindsight I think I would have been fine with the theoretical lower performance of the tensor chip vs the snapdragon in my S24U.
I also wished this FAQ existed sooner / researched more properly regarding app compatibility on graphene, so this is wholly my mistake
Cest la vie
I’ll do better next chance I get.
I have GOS on a pixel8a and my solution to the banking apps was to make a browser bookmark on my homescreen that goes straight to the bank mobile login site . it feels just like the app…except I can’t deposit checks via the camera.
I guess I am not a defeatist either, good to know.
I watch the British “Coronation Street” and see them just swiping their phones at a little gadget when buying a coffee at the local diner. Swipe and go, no other steps.
Sadly NFC doesn’t work on graphene though
It does if you just slip a tap-to-pay enabled bank card in the back of your phone case.
Honestly, the US (where we live) does this surprisingly well, considering how backwards of a country it is in a lot of other ways.
Credit cards, and even debit cards (like the one from our bank), generally have NFC these days, just like phones do. But you don’t need to faff about with your phone. Just pull out your card, tap it, done.
No app compatibility to deal with, just as easy as phone NFC, I don’t know why that’s not the standard over there. (Plenty of people do use phone payments here too though. I don’t get why.)
– Frost
That was the default in the UK for quite a while and a lot of (typically older, I think) people still use a physical card for contactless payment. Most people have moved to mobile contactless payment because it’s just as quick as fishing a card out of a wallet, most people always carry their phone and it has a degree of biometric security that the physical card doesn’t. I don’t generally carry a wallet or cash and haven’t for years. I have all my cards in my e-wallet, including my default credit, bank, loyalty and even my work door access cards on there. If I do forget my phone, I can do all their same from my watch and never have to carry a wallet with a dozen pieces of plastic in. A win for pocket space, if nothing else!
considering how backwards of a country it is in a lot of other ways.
Are magnetic strips and signatures still a thing there? And do people still get actual ‘pay cheques’?
Blows my mind that you have to do your own taxes there.
Non starter until tap to pay works consistently.
there are comments in the link that seem to address this
Honestly? You can’t just carry around a card or some cash? You’re not willing to sacrifice that one convenience to get rid of Google?
Tap to pay works perfectly fine on my plastic cards that don’t run out of battery or need to be unlocked before I tap them. I genuinely don’t see what the big deal is about having it work on a phone.
If a phone is lost or stolen, at least that security of unlocking to tap-to-oay will prevent purchases from being made. A plastic card, not so much.
The plastic card can be shut off by the bank web site/phone call/app. Banks also have fraud protection, a quick call will shut off the card and undo any fraudulent transactions. The fear is not realistic. Also why it is good to use a credit card and not carry a bank card. A fiscal firewall.
Exactly. A physical card is simply better in every single way. Imagine the stress when your phone inevitably dies, if you are out traveling and suddenly you have no access to money or communication. Screw that.
I use Graphene. There is some banks that do tap-to-pay independent of Google Pay, but not mine. There is one legit good thing about modern tap-to-pay - it cycles card numbers, making it harder for retailers to track you.
And using tap or chip on a regular credit card does as well. Every tap rotates through a set of keys in the card. The periodic use of the chip refreshes the tap keys. It isn’t the first gen tap to pay on credit cards anymore, it is much more robust.
But beyond that, the retailer already saw your face when you walked in, already saw it at the point of sale, already tracked you as you traveled the store via WiFi, already saw the BT/WiFi profile of your rotating MAC address device as it only obfuscates, and in some cases, already had your phone join their WiFi network via EAP-SIM through your carrier, already scanned your license plate with Flock in the parking lot, and already saw your club/discount/points card number at the point of sale, so they already associated you with yourself.
Tap-to-pay also sets up so all your transactions, on-phone or not, are captured by the handset manufacturer for further resale of metadata.
Some of those might be less prevalent depending on where you are. But yes, there’s a lot of things to keep in mind.
Also, the plastic card thing is neat, I did not know that.
I’m especially annoyed about how easy it is to traci Bluetooth devices. I seem to remember that newer devices can rotate macs, but all my headphones are too old for that. And I kinda don’t want to throw away good hardware.
I didn’t know that. That’s a handy feature.
Oh God, it’s an edge case I’ll never run into!!!
Optimize the median, not this hog wash.
Haha, I hope the code you write isn’t running anything important.
Gotme
It is admittedly more secure.
A stolen card can be used for tap to pay, with not all transactions requiring a PIN with a card. A stolen phone cannot if they don’t have your phone’s PIN or biometrics.
And most phone tap-to-pay apps will also randomize your card data in the transaction to prevent your information from being tracked or compromised in the event of a large-scale data breach, like what happened with Target in 2013 and hundreds of retailers since.
For me it’s that 75%+ of my contactless payments trigger an “insert card and enter PIN” check, which defeats its purpose. Presumably because my bank has become super cautious or their fraud detection is managed by a clanker.
I never have a problem with the same transactions using my phone.
Honestly, I’d prefer to use my card, rather than gift transaction data to my phone manufacturer.
There was a recent change in the last month or three that any tap transaction over $100 has to be chip or swipe. Likely what you are seeing. Which again goes back to how pointless phone tapping is when the ability to buy goods and services is already rife with hoop-jumping.
Not in my case. Been happening for a year or more, and for as little as £3 (bus ride, etc).
I personally agree, but (some) people stop carrying their wallets, when they can pay with their phones.
I do not always carry my wallet, but i have a credit card in a compartment in the back of my phone case. Works just as well as google pay for me.
It’s easier.
Who cares? What is the obsession with banking apps? From a privacy perspective, one does not want tap to pay or banking apps on their device. Setting that up gives the bank/a whole pipeline of interim companies access to every transaction you make as well as phone telemetry, whether or not you use the tap to pay service. Carrying a card or paper money is so simple.
It’s a novelty, sure, but who wants tying their ability to purchase, drive, go through airports, and such, to an electronic stalking tether with a limited battery? Much simpler, as others have said, to use tools that do not require battery.
That’s a weird hill to die on, I should know I die on weird hills every day
👌
