Apps deliberately refusing to work on modded devices: Difference between revisions
Magnusmaster (talk | contribs) No edit summary |
SoulReaper (talk | contribs) m Grammar/wording/punctuation |
||
| (7 intermediate revisions by 3 users not shown) | |||
| Line 1: | Line 1: | ||
Apps running on Android and potentially other operating systems can detect if the device has been modded and refuse to function if that is the case. This can happen if the device allows the user to run applications as root or administrator, has an unlocked bootloader or runs a different operating system than the one provided by the manufacturer.<ref name=":0">{{title=Apps&Games need PI |url=https://xdaforums.com/t/ | {{StubNotice}} | ||
Apps running on Android and potentially other operating systems can detect if the device has been modded and refuse to function if that is the case. This can happen if the device allows the user to run applications as root or administrator, has an unlocked bootloader or runs a different operating system than the one provided by the manufacturer.<ref name=":0">{{Cite web |title=Apps & Games need PI |url=https://xdaforums.com/t/4677050/ |website=XDA Forums}}</ref><ref>{{Cite web |title=Configure API responses |url=https://developer.android.com/google/play/integrity/setup#configure-api |website=Google}}</ref> | |||
==How it works== | ==How it works== | ||
Phones and PCs include a Trusted Platform Module <ref>{{Cite web |title=Trusted Platform Module |url=http://www-01.ibm.com/support/docview.wss?uid=pos1R1003970&aid=1 |archive-url=https://web.archive.org/web/20160803203400/http://www-01.ibm.com/support/docview.wss?uid=pos1R1003970&aid=1 |archive-date=2016-08-03}}</ref>: a chip | Phones and PCs include a Trusted Platform Module <ref>{{Cite web |title=Trusted Platform Module |url=http://www-01.ibm.com/support/docview.wss?uid=pos1R1003970&aid=1 |archive-url=https://web.archive.org/web/20160803203400/http://www-01.ibm.com/support/docview.wss?uid=pos1R1003970&aid=1 |archive-date=2016-08-03}}</ref>: a chip independent from the device's CPU which can only run software signed by the device manufacturer. This chip allows applications to use a technique called remote attestation to detect if the operating system has been tampered with, and if so will block functionality or refuse to work altogether. If done properly, remote attestation is impossible to spoof, even by the owner of the device. | ||
==Why it is a problem== | ==Why it is a problem== | ||
The owner of the phone is unable to do the following (while | The owner of the phone is unable to do the following (while continuing to use applications that block modded devices) | ||
*update the device operating system once it is no longer supported by the device manufacturer | *update the device operating system once it is no longer supported by the device manufacturer | ||
| Line 11: | Line 12: | ||
*access all data stored on the device | *access all data stored on the device | ||
Since many businesses and governments require their customers to download their proprietary application to their phones in order to use their services, and many of those applications refuse to work on a modded device, people are left unable to modify their phone as they wish, | Since many businesses and governments require their customers to download their proprietary application to their phones in order to use their services (see [[Forced app download]]), and many of those applications refuse to work on a modded device, people are left unable to modify their phone as they wish, as they then couldn't interact with those businesses which require or heavily encourage their app. | ||
==Examples | ==Examples== | ||
===Android<ref name=":0" />=== | |||
{{Main|Google Play Integrity API}} | |||
*Google Wallet | *Google Wallet | ||
*VPN by Google for Pixel | *VPN by Google for Pixel | ||
| Line 22: | Line 25: | ||
*Uber Driver | *Uber Driver | ||
*Twitter/X | *Twitter/X | ||
*Twilio Authy Authenticator< | *Twilio Authy Authenticator | ||
*ChatGPT<ref>{{Cite web |title=PlayIntegrity Verification failed - ChatGPT / Bugs |url=https://community.openai.com/t/1267945 |website=OpenAI Developer Community}}</ref><ref>{{Cite web |title=Question - ChatGPT error: Preauth Playintegrity verification failed |url=https://xdaforums.com/t/4737618/ |website=XDA Forums}}</ref> | |||
==References== | ==References== | ||
{{reflist}} | {{reflist}} | ||
[[Category:Common terms]] | [[Category:Common terms]] | ||
Revision as of 21:00, 10 June 2025
❗Article Status Notice: This Article is a stub
This article is underdeveloped, and needs additional work to meet the wiki's Content Guidelines and be in line with our Mission Statement for comprehensive coverage of consumer protection issues. Issues may include:
- This article needs to be expanded to provide meaningful information
- This article requires additional verifiable evidence to demonstrate systemic impact
- More documentation is needed to establish how this reflects broader consumer protection concerns
- The connection between individual incidents and company-wide practices needs to be better established
- The article is simply too short, and lacks sufficient content
How you can help:
- Add documented examples with verifiable sources
- Provide evidence of similar incidents affecting other consumers
- Include relevant company policies or communications that demonstrate systemic practices
- Link to credible reporting that covers these issues
- Flesh out the article with relevant information
This notice will be removed once the article is sufficiently developed. Once you believe the article is ready to have its notice removed, visit the Discord (join here) and post to the #appeals channel, or mention its status on the article's talk page.
Apps running on Android and potentially other operating systems can detect if the device has been modded and refuse to function if that is the case. This can happen if the device allows the user to run applications as root or administrator, has an unlocked bootloader or runs a different operating system than the one provided by the manufacturer.[1][2]
How it works
Phones and PCs include a Trusted Platform Module [3]: a chip independent from the device's CPU which can only run software signed by the device manufacturer. This chip allows applications to use a technique called remote attestation to detect if the operating system has been tampered with, and if so will block functionality or refuse to work altogether. If done properly, remote attestation is impossible to spoof, even by the owner of the device.
Why it is a problem
The owner of the phone is unable to do the following (while continuing to use applications that block modded devices)
- update the device operating system once it is no longer supported by the device manufacturer
- use alternative operating systems such as Linux or other Android-based operating systems that add new features
- remove all bloatware
- access all data stored on the device
Since many businesses and governments require their customers to download their proprietary application to their phones in order to use their services (see Forced app download), and many of those applications refuse to work on a modded device, people are left unable to modify their phone as they wish, as they then couldn't interact with those businesses which require or heavily encourage their app.
Examples
Android[1]
- Main article: Google Play Integrity API
- Google Wallet
- VPN by Google for Pixel
- Netflix
- McDonald's App
- Google Messages (RCS does not work when device is modded)
- Uber Driver
- Twitter/X
- Twilio Authy Authenticator
- ChatGPT[4][5]
References
- ↑ 1.0 1.1 "Apps & Games need PI". XDA Forums.
- ↑ "Configure API responses". Google.
- ↑ "Trusted Platform Module". Archived from the original on 2016-08-03.
- ↑ "PlayIntegrity Verification failed - ChatGPT / Bugs". OpenAI Developer Community.
- ↑ "Question - ChatGPT error: Preauth Playintegrity verification failed". XDA Forums.