Requiring people to use products from one of two private American companies with a bad track record of locking people out of their accounts is more than “not great”. Some things are better not done if they can’t be done well.

> The initial limitation to Google/Android is not great

It’s also illegal on both accessibility grounds as well as violating the eIDAS spirit of no dependency on specific providers.

By shrugging it off as “not great”, you’re also dooming every citizen to have to comply with whatever whimsical terms of service Google and Apple have.

Have you ever tried to unban your Apple/Google account? So in effect, everyone’s access to eID services will depend on some crappy automation some intern in California setup to detect “abuse” or whatever.

There are technical solutions to avoid this dependency and you’re probably getting paid to find, research and adopt them. So … do your job?

German citizen here. So why is an implementation going forward when you already know it will not serve all citizens? Why are we not refusing to implement this until we know we can make it work on all devices?

Personally I recently switched from an AOSP based android without Google Play to Ubuntu Touch. In the future with better hardware support I will probably switch to postmarketOS.

You should think about how easy it is to permanently lose access to your Google account for very trivial issues and Google doesn't offer any form of recovery. That in addition to the current geopolitical situation should be reason enough not to rely on that for any justification.

And personally as a software developer myself i know that nothing is more permanent than a temporary solution. No one will prioritize or give budget to change it later "because it works"

In light of all of these shortcomings with platform attestation, why go with the eIDAS 2 wallet approach at all? eIDAS 1 already solved this with Mobile-ID (SIM-based, no Google/Apple dependency) and Smart-ID (server-side key management with minimal platform reliance). What does the wallet model give you that justifies this level of dependency on two American corporations’ proprietary backends?

Especially considering that mobile-ID has been around since 2007.

German citizen here. I find this attitude horrible and threatening. You are working on sacrificing yet another part of our digital sovereignty to a US company. There are trillions of better things to do with your life.

Tbh, I feel this is stupid.

Banks are giving out QR Tan. Optical TAN devices which work with credit cards and it has been going pretty well. Why can eiDAS not have something similar. Distribute hardware tokens. Get rid of dependency on any OS.

Just a quick question, and sorry if it might have been answered already... why preventing duplication is so important? I know it’s in the spec probably [1], but I can’t figure out the reason.

And a suggestion: add external HSM support at least? (e.g. things like NitroKey/YubiKey)

[1]: https://eudi.dev/latest/architecture-and-reference-framework... I suppose?

> and we have support for other OSs on our list (like, e.g., GrapheneOS)

Excellent. Massive respect to you for doing this. This attestation business is an existential threat to "other" operating systems. I'm glad to see people are putting effort into supporting them.

Side question. How come it is always the most incompetent people who get put in charge of implementing things like that. Over and over apps and services are developed in Germany and completely fail at what they are supposed to achieve. Where are these people recruited from?

> The initial limitation to Google/Android is not great, we know that, and we have support for other OSs on our list (like, e.g., GrapheneOS).

GrapheneOS uses standard Android APIs for hardware attestation (as opposed to Google-specific ones), so why don't you just use those from the get-go?

You must go back to the drawing board and rely on highly-regulated Telecom standards (that's why they were mandated in the first place!) not monopolistic defacto "best practices" you have no influence over because they're more convenient for you.

This is simply unconstitutional and should be escalated ASAP if you don't want to end it before the appropriate court in Leipzig, Karlsruhe, or maybe Luxembourg.

Why is a trusted device chain needed? It will put more trust in the potential Chinese device maker and American software companies than the user who's id is shown?

Will eIDAS be the only way to identify yourself in cases where it's needed, or will we be able to user other mechanisms like the german ID card stuff or an entirely separate alternative?

Or to put it another way, is a smartphone required? If not, that would already clear up a lot of issues, I think.

EDIT: Whoops, just saw the answer to another comment asking precisely this. So it's not a requirement. Good. Is there a legal framework that ensures that this remains the case? Otherwise, I fear it will become a de facto requirement over time.

Why not do it right from the beginning?

https://grapheneos.org/articles/attestation-compatibility-gu...

Thank you for chiming in.

> We have to use some kind of attestation mechanism per the eIDAS implementing acts.

What does this attestation need to prove? Is this only about ensuring that private keys are managed by a secure enclave or a TPM?

> we have support for other OSs on our list (like, e.g., GrapheneOS)

I appreciate that, even though I am really not enthusiastic of eIDAS. But time will tell. Thank you.

I know it’s not quite the same thing as an OS vendor, but culturally, if you’re having trouble empathizing with the ick in this thread then imagine if the initial implementation was available only for account holders with Facebook, Yahoo! Mail, or MySpace.

> The initial limitation to Google/Android [...] is simply a matter of where we focus our energy at the moment

Nice... so the rush is to delegate power to the large American platform?

I don't get it. Are mechanisms in our ID cards not strong enough so that we have to rely on the security of the operating system?

that‘s not correct. Article 5 eIDAS2 explicitly states, that europeans exercise full control over their data. Therefore EUDI wallet must not be a walled garden. Especially if the wallet shall be used for authenticating and signing, it must be available to all europeans, even those sanctioned by the US.

If this is your plan, please go back to the drawing board.

There's a new initiative by some non-google non-apple phone vendors called *UnifiedAttestation* which I hope you will support at some point in the future:

https://www.heise.de/en/news/Paying-without-Google-New-conso...

Humiliating disregard for sovereignty.

Shouldn't the energy instead be focused on creating a standardized eIDAS driver API that OS vendors are required to implement?

It's insane to make yourselves US dependent from the very beginning, at least provide something like a crypto-key that you can get from an official, banks can do it, so can you.

> That doesn't work without operating system support

Do you realize where this path is going?

Certain European governments would have greatly benefited from KYC/attestation in the late 1930s had it existed.

Have you considered Unified Attestation [1] which is an alternative to Google's?

[1] https://uattest.net/

Another German citizen here. I think what you're doing is illegal and will be blocked by German courts.

Why not just use U2F or certificates on crypto-tokens?

This is simply unacceptable. You are not making an innocent pragmatic compromise here, you are launching digital infrastructure which initially will tie everyone to Google/Apple and give alternatives a huge disadvantage for an unknown amount of time. Nobody knows when, or even if ever, support for open platforms will arrive.

You should be ashamed of being involved in this monopoly handover to American big tech.

I think it should be possible IMHO, like it is for many banks (still), to get a hardware token and then use whatever hardware/browser. Even a nice EU hardware token which allows banks , govs etc to add their keys/seeds in the enclave would be nicer so I don't have the lug 1000 tokens around, but it's still better than having to trust non sovereign companies for anything without backup; like multiple here said; Google/Apple getting the command from the Dep of War to shut down EU phone attestation, you losing your account etc, or, you know, me simply not wanting to use their stuff.

This is on the stupid side of lazy (again). You'll still be sovereign only at the pleasure of Apple and Google if you submit to their platform as a service crap.

Perhaps look at the Spanish Cl@ve, it works with Linux. It's just a simple digital certificate that allows you to identify yourself.

You can even run it on OpenBSD or TempleOS if you want to.

Google has banned many accounts of genuine users.

What is your fallback for such an important vital service?

> We have to use some kind of attestation mechanism per the eIDAS implementing acts.

Sounds like these "eIDAS implementing acts" are the problem, and were influenced by ulterior motives.

What if I don’t have a smartphone?

“Not Great” is the understatement of the century. It fails to protect sovereign identity by handing the default to companies not only under foreign sanctions control but who also lock people from their accounts without recourse.

The device chain is a classic misdirection, it seems everyone here is just following Meta’s lobbying to put this into the OS.

Even the carrier layer would be better than the mobile device layer.

Or, you know, just look at Singapore’s or Swiss National SSO - it functions on an app that layer just fine, no issues

See https://github.com/eu-digital-identity-wallet/eudi-app-andro...

so I have to buy a Yubikey hardware thingie to keep my Google account just to use eIDAS??

For those that do not know, that is the only way to get the Google account back is to use a hardware 2FA in the first place....

AND yubikeys are $60 per yubikey...and generally you want 2 including a backup

[dead]

[dead]

Sich bei staatlichen Dienstleistungen auf Google oder Apple zu verlassen, kommt schon fast einem Verrat gleich. Trump hasst uns.