I wonder why almost no one in these GrapheneOS praise topic mentions that you won't be able to pay with your phone, and often even bank apps refuse to install on it - it was a deal breaker for me personally, and now I'm back under Google umbrella :<
Limitations are on the website - https://grapheneos.org/articles/
I don't care about google pay/wallet or android auto. My credit union's app does work fine, but even if it didn't, I'd still use GOS. It's great.
This is a fantastic find, thank you very much! I ended up switching from Lineage + MicroG to GOS for the android Auto support because I couldn't find something like this. I will be setting this up on my secondary Lineage device.
Once upon a time I would be happy to put custom ROMs on my phone and do all these patches.
These days I just care so much about "things should just work" that I cannot justify doing this. I cannot think about how I could spend time figuring out what to do when the repo is no longer maintained or something breaks for random reasons.
The value I get from either being degoogled or using GOS like I have for the last year and a half is worth the 3-5 hours time investment once a year or two when I get a new phone.
and if you did you could use curve pay instead. Basically the same thing with more features, the only catch is that they charge FX fees after surpassing a limit (but that can be mitigated by paying with the same currency of your linked card, thus never executing a change in the first place)
My tiny local credit union app isn't on there, but it worked fine. I miss wallet a bit and it's a shame that there are important apps which still refuse to act reasonably, but I don't think it's really that bad.
Paying with your phone just seems like one of those separation of concerns problem. I'm sure you have backup forms, and cash, etc, but there's something about not having to worry about the multinefarious capabilities of my phone if it's not in my posession.
Well, that's what we all did like 10-15 years ago with nice double-DIN decks that had nothing to do with the car besides taking power from it and perhaps some steering wheel controls. It was just a hard-wired boombox, 100%. Now, the stereo is in fact properly a part of the Infotainment System you cannot replace, so as it ages out in a perfectly good vehicle, the entire car deprecates faster than it would have in decades past.
Even my 2015 Mazda has enough vehicular settings in the infotainment menu that despite being replaceable with a double-din I haven't bothered because I'd lose all configurability there. I opted for a cheapo $100 carplay unit instead - the modern equivalent of the discman-to-tape adapters ;)
Difference is a plastic card that is lighter and smaller than the phone is just as effective as the phone is for payments. When it comes to audio, a car stereo is going to be much more convenient and brtter quality than a boombox or bluetooth. That said, i did know someone with an older car who used a bluetooth speaker instead of their stereo, so they could connect their phone audio.
I don't know about where you live but here contactless card payments have lower limits than phone-based ones. Also the phone allows me to switch between multiple cards, including transit-specific cards.
I'm pretty sure that the infotainment hack was completely orthogonal to whether it was Beethoven, Iron Maiden, or blissful silence.
Having said that, a successful car infotainment system attack on android auto or apple carplay could, of course, compromise your phone.
So it's up to you whether you decide to cope with that possibility by breaking the law and navigating with a handheld device, or simply declining to do banking on your phone, since successful car exploits mean the attack surface against your phone is much larger than you might presume.
I was responding to a comment about the security implications of letting the infotainment system interact with the vehicle controls, and I referenced an incident where someone compromised a car via that.
I have no idea how CarPlay would compromise your phone given apples sandbox but whomever finds it is gonna have a multimillion dollar payday since iOS jailbreaks are quite valuable.
I guess I'm so paranoid that not only do I run GrapheneOS, I've never had nor wanted banking nor payment apps on my phone. Having ALL my money be accessible from something so easily lost, stolen, or seized would be a constant source of stress for me. There's (hopefully) a lot of security around accessing it, but sometimes the only winning move is not to play.
Fair point, but how much extra effort is it to put a credit card between your phone? I'm still under the Google umbrella as well, but this would be my first issue solved.
Honestly, it's a half hour of work to pull the chip out of a credit/debit card and put it into your phone case. (Just need to be careful and not cut the antennas)
Banks will readily send you a completely separate computer just to perform payment transactions with. It's very thin, and you can even get a phone case that holds it as well. There's really little reason to bundle all that functionality up into one device, especially if a consequence is that doing so requires you to run surveillance industry malware.
There's some reasonable fear that at some point large portions of the web will require secure attestation that a device is not rooted; this may come in the form of automating age verification for convenience. When all it takes is a checkbox on Cloudflare to require 18+, a lot of site operators will just use it.
^ put this into a .reg file, run it, and never see those bullshit web search results again. Have been doing this first thing after a fresh install on every PC.
Thanks for the suggestion, but sadly that's not what I'm thinking of.
The thing I'm looking for is more like a general take on life, how to think about things, how not to fall into common fallacies.
reply