Apps deliberately refusing to work on modded devices: Difference between revisions
Magnusmaster (talk | contribs) mNo edit summary |
mNo edit summary |
||
| (25 intermediate revisions by 14 users not shown) | |||
| Line 1: | Line 1: | ||
{{IncidentCargo | |||
|Company= | |||
|StartDate= | |||
|EndDate= | |||
|Status= | |||
|ProductLine= | |||
|Product= | |||
|ArticleType= | |||
|Type=Digital Restrictions | |||
|Description=Many apps on any kind of device can deliberately refuse to work if the device has been suspected to be modified. | |||
}} | |||
Apps running on [[Android]] and potentially other {{Wplink|Operating system|operating systems}} (OS) can detect if the device has been modded and refuse to function if that is the case. This can happen if the device allows the user to run applications as [[Jailbreak|root]] or administrator, has an [[Bootloader unlocking|unlocked bootloader]] or runs a different OS than the one provided by the manufacturer.<ref name=":0">{{Cite web |title=Apps & Games need PI |url=https://xdaforums.com/t/4677050/ |url-status=live |archive-url=https://web.archive.org/web/20260222211621/https://xdaforums.com/t/apps-games-need-pi-list.4677050/ |archive-date=22 Feb 2026|website=XDA Forums}}</ref><ref>{{Cite web |title=Configure API responses |url=https://developer.android.com/google/play/integrity/setup#configure-api |website=Google |url-status=live |archive-url=http://web.archive.org/web/20260204035851/https://developer.android.com/google/play/integrity/setup |archive-date=4 Feb 2026}}</ref> | |||
Effective March 1st 2026, all banking apps in Vietnam must detect whether the app is running on a device that has an unlocked bootloader, is rooted or has [[wikipedia:Android_Debug_Bridge|ADB]] enabled and cease to function if that is the case <ref>{{Cite web |title=[Discussion] The root-and-mod-hiding / fingerprint-spoofing / keybox-stealing cat-and-mouse game |url=https://xdaforums.com/t/discussion-the-root-and-mod-hiding-fingerprint-spoofing-keybox-stealing-cat-and-mouse-game.4425939/page-118#post-90441375 |url-status=live |archive-url=http://web.archive.org/web/20260129121605/https://xdaforums.com/t/discussion-the-root-and-mod-hiding-fingerprint-spoofing-keybox-stealing-cat-and-mouse-game.4425939/page-118 |archive-date=29 Jan 2026}}</ref> | |||
==How it works== | ==How it works== | ||
Some phones and PCs include a [[Trusted computing|Trusted Platform Module]] <ref>{{Cite web |title=Trusted Platform Module |url=http://www-01.ibm.com/support/docview.wss?uid=pos1R1003970&aid=1 |archive-url=https://web.archive.org/web/20160803203400/http://www-01.ibm.com/support/docview.wss?uid=pos1R1003970&aid=1 |archive-date=3 Aug 2016}}</ref>: a chip independent from the device's CPU which can only run software signed by the device manufacturer. This chip allows applications to use a technique called remote attestation to detect if the operating system has been tampered with, and if so will block functionality or refuse to work altogether. If done properly, remote attestation is impossible to spoof, even by the owner of the device. | |||
==Why it is a problem== | ==Why it is a problem== | ||
The owner of the phone is unable to do the following (while | The owner of the phone is unable to do the following (while continuing to use applications that block modded devices) | ||
*update the device operating system once it is no longer supported by the device manufacturer | *update the device operating system once it is no longer supported by the device manufacturer | ||
*use alternative operating systems such as Linux or other Android-based operating systems that add new features | *use alternative operating systems such as Linux or other Android-based operating systems that add new features | ||
*remove all bloatware | *remove all [[bloatware]] | ||
*access all data stored on the device | *access all data stored on the device | ||
Since many businesses and governments require their customers to download their proprietary application to their phones in order to use their services, and many of those applications refuse to work on a modded device, people are left unable to modify their phone as they wish, | Since many businesses and governments require their customers to download their proprietary application to their phones in order to use their services (see [[Forced app download]]), and many of those applications refuse to work on a modded device, people are left unable to modify their phone as they wish, as they then couldn't interact with those businesses which require or heavily encourage their app. | ||
==Examples | ==Examples== | ||
===Android=== | |||
{{Main|Google Play Integrity API}} | |||
*Google Wallet | *Google Wallet | ||
*VPN by Google for Pixel | *VPN by Google for Pixel | ||
*Netflix | *[[Netflix]] | ||
*McDonald's App | *McDonald's App | ||
*Google Messages (RCS does not work when device is modded) | *Google Messages (RCS does not work when device is modded) | ||
*Uber Driver | *Uber Driver | ||
* | *[[X Corp]] | ||
*Twilio Authy Authenticator< | *[[Authy|Twilio Authy Authenticator]] | ||
*ChatGPT<ref>{{Cite web |title=PlayIntegrity Verification failed - ChatGPT / Bugs |url=https://community.openai.com/t/1267945 |website=OpenAI Developer Community |archive-url=https://web.archive.org/web/20260223031856/https://community.openai.com/t/playintegrity-verification-failed/1267945 |archive-date=23 Feb 2026}}</ref><ref>{{Cite web |title=Question - ChatGPT error: Preauth Playintegrity verification failed |url=https://xdaforums.com/t/4737618/ |website=XDA Forums |archive-url=https://web.archive.org/web/20260223032006/https://xdaforums.com/t/chatgpt-error-preauth-playintegrity-verification-failed.4737618/ |archive-date=23 Feb 2026}}</ref> | |||
==References== | ==References== | ||
{{reflist}} | {{reflist}} | ||
[[Category: | [[Category:Anti-consumer practices]] | ||