Apps deliberately refusing to work on modded devices: Difference between revisions
→How it works: TPM link |
mNo edit summary |
||
| (13 intermediate revisions by 9 users not shown) | |||
| Line 1: | Line 1: | ||
{{IncidentCargo | |||
|Company= | |||
|StartDate= | |||
|EndDate= | |||
|Status= | |||
|ProductLine= | |||
|Product= | |||
|ArticleType= | |||
|Type=Digital Restrictions | |||
|Description=Many apps on any kind of device can deliberately refuse to work if the device has been suspected to be modified. | |||
}} | |||
Apps running on [[Android]] and potentially other operating systems can detect if the device has been modded and refuse to function if that is the case. This can happen if the device allows the user to run applications as root or administrator, has an unlocked bootloader or runs a different | Apps running on [[Android]] and potentially other {{Wplink|Operating system|operating systems}} (OS) can detect if the device has been modded and refuse to function if that is the case. This can happen if the device allows the user to run applications as [[Jailbreak|root]] or administrator, has an [[Bootloader unlocking|unlocked bootloader]] or runs a different OS than the one provided by the manufacturer.<ref name=":0">{{Cite web |title=Apps & Games need PI |url=https://xdaforums.com/t/4677050/ |url-status=live |archive-url=https://web.archive.org/web/20260222211621/https://xdaforums.com/t/apps-games-need-pi-list.4677050/ |archive-date=22 Feb 2026|website=XDA Forums}}</ref><ref>{{Cite web |title=Configure API responses |url=https://developer.android.com/google/play/integrity/setup#configure-api |website=Google |url-status=live |archive-url=http://web.archive.org/web/20260204035851/https://developer.android.com/google/play/integrity/setup |archive-date=4 Feb 2026}}</ref> | ||
Effective March 1st 2026, all banking apps in Vietnam must detect whether the app is running on a device that has an unlocked bootloader, is rooted or has [[wikipedia:Android_Debug_Bridge|ADB]] enabled and cease to function if that is the case <ref>{{Cite web |title=[Discussion] The root-and-mod-hiding / fingerprint-spoofing / keybox-stealing cat-and-mouse game |url=https://xdaforums.com/t/discussion-the-root-and-mod-hiding-fingerprint-spoofing-keybox-stealing-cat-and-mouse-game.4425939/page-118#post-90441375 |url-status=live |archive-url=http://web.archive.org/web/20260129121605/https://xdaforums.com/t/discussion-the-root-and-mod-hiding-fingerprint-spoofing-keybox-stealing-cat-and-mouse-game.4425939/page-118 |archive-date=29 Jan 2026}}</ref> | |||
==How it works== | ==How it works== | ||
Some phones and PCs include a [[Trusted | Some phones and PCs include a [[Trusted computing|Trusted Platform Module]] <ref>{{Cite web |title=Trusted Platform Module |url=http://www-01.ibm.com/support/docview.wss?uid=pos1R1003970&aid=1 |archive-url=https://web.archive.org/web/20160803203400/http://www-01.ibm.com/support/docview.wss?uid=pos1R1003970&aid=1 |archive-date=3 Aug 2016}}</ref>: a chip independent from the device's CPU which can only run software signed by the device manufacturer. This chip allows applications to use a technique called remote attestation to detect if the operating system has been tampered with, and if so will block functionality or refuse to work altogether. If done properly, remote attestation is impossible to spoof, even by the owner of the device. | ||
==Why it is a problem== | ==Why it is a problem== | ||
The owner of the phone is unable to do the following (while continuing to use applications that block modded devices) | The owner of the phone is unable to do the following (while continuing to use applications that block modded devices) | ||
| Line 9: | Line 23: | ||
*update the device operating system once it is no longer supported by the device manufacturer | *update the device operating system once it is no longer supported by the device manufacturer | ||
*use alternative operating systems such as Linux or other Android-based operating systems that add new features | *use alternative operating systems such as Linux or other Android-based operating systems that add new features | ||
*remove all bloatware | *remove all [[bloatware]] | ||
*access all data stored on the device | *access all data stored on the device | ||
| Line 16: | Line 30: | ||
==Examples== | ==Examples== | ||
===Android | ===Android=== | ||
{{Main|Google Play Integrity API}} | {{Main|Google Play Integrity API}} | ||
*Google Wallet | *Google Wallet | ||
*VPN by Google for Pixel | *VPN by Google for Pixel | ||
*Netflix | *[[Netflix]] | ||
*McDonald's App | *McDonald's App | ||
*Google Messages (RCS does not work when device is modded) | *Google Messages (RCS does not work when device is modded) | ||
*Uber Driver | *Uber Driver | ||
* | *[[X Corp]] | ||
*Twilio Authy Authenticator | *[[Authy|Twilio Authy Authenticator]] | ||
*ChatGPT<ref>{{Cite web |title=PlayIntegrity Verification failed - ChatGPT / Bugs |url=https://community.openai.com/t/1267945 |website=OpenAI Developer Community}}</ref><ref>{{Cite web |title=Question - ChatGPT error: Preauth Playintegrity verification failed |url=https://xdaforums.com/t/4737618/ |website=XDA Forums}}</ref> | *ChatGPT<ref>{{Cite web |title=PlayIntegrity Verification failed - ChatGPT / Bugs |url=https://community.openai.com/t/1267945 |website=OpenAI Developer Community |archive-url=https://web.archive.org/web/20260223031856/https://community.openai.com/t/playintegrity-verification-failed/1267945 |archive-date=23 Feb 2026}}</ref><ref>{{Cite web |title=Question - ChatGPT error: Preauth Playintegrity verification failed |url=https://xdaforums.com/t/4737618/ |website=XDA Forums |archive-url=https://web.archive.org/web/20260223032006/https://xdaforums.com/t/chatgpt-error-preauth-playintegrity-verification-failed.4737618/ |archive-date=23 Feb 2026}}</ref> | ||
==References== | ==References== | ||
{{reflist}} | {{reflist}} | ||
[[Category: | [[Category:Anti-consumer practices]] | ||