• rufus@discuss.tchncs.de
      link
      fedilink
      arrow-up
      7
      ·
      edit-2
      1 year ago

      I think GrapheneOS isn’t made for that purpose. It’s made to be safe and do privacy well. I think signature spoofing, rooting to circumvent things etc are opposing requirements. I don’t think everything works. There are websites and other comments with more info. My Banking TAN App works, though. Google Pay doesn’t.

        • DebatableRaccoon
          link
          fedilink
          arrow-up
          9
          arrow-down
          1
          ·
          edit-2
          1 year ago

          Not to start an argument but why would one want to be using Google Pay after going through the process of de-googling their phone? Seems counterproductive.

          • Mojojojo1993@lemmy.world
            link
            fedilink
            English
            arrow-up
            3
            arrow-down
            1
            ·
            1 year ago

            Fair point. Is there an alternative to Google pay. I don’t use a card and pretty much refuse to use anywhere that requires care or cash

              • JackGreenEarth@lemm.ee
                link
                fedilink
                arrow-up
                1
                ·
                1 year ago

                Every alternative except Apple and Samsung pay, which are device specific and proprietary, seem to just be crypto. No NFC FOSS purchases.

                • DebatableRaccoon
                  link
                  fedilink
                  arrow-up
                  2
                  ·
                  1 year ago

                  Sadly, there’s not too much I can do about that. From what I’ve understood, there’s a whole lot of red tape around tap-to-pay transaction technology. Personally, I don’t use any of it. Only cash or card where I have to.

              • Mojojojo1993@lemmy.world
                link
                fedilink
                English
                arrow-up
                3
                arrow-down
                1
                ·
                1 year ago

                I don’t want to tap the card. Point of preference. I don’t have a wallet. I have a phone.

        • TWeaK@lemm.ee
          link
          fedilink
          English
          arrow-up
          5
          ·
          1 year ago

          Google Pay gives you worse consumer rights than using your card with contactless. A contactless card purchase is processed as “cardholder not present”, the same as phone catalogue purchases always used to be done, and the same as online purchases. The seller assumes default responsibility in any dispute. When you make a purchase with your card pin, or when you make a purchase with Google Pay, both are considered secure and authorised by you, so that becomes the default position in a dispute.

          If someone steals your card and uses it to make a bunch of contactless purchases, you’d have a much easier time getting them refunded than if the purchases were made with your phone.

          • Mojojojo1993@lemmy.world
            link
            fedilink
            English
            arrow-up
            3
            ·
            1 year ago

            How would they use my phone? It’s locked and requires fingerprint to unlock? Card requires nothing. Can lock down phone. Can lock card but need to contact bank.

            • TWeaK@lemm.ee
              link
              fedilink
              English
              arrow-up
              1
              ·
              1 year ago

              Fingerprint is fairly easy to bypass, face unlock sometimes moreso. A PIN or password can be captured by just watching someone, and you’ll have far more opportunity to capture their phone PIN than you would their card PIN. If anything, you’re perhaps less likely to lose your card as it spends more time safe in your pocket.

              The point is it can be done, and you’re in a worse position if/when it happens.

              • Mojojojo1993@lemmy.world
                link
                fedilink
                English
                arrow-up
                1
                ·
                1 year ago

                Sorry. Where are fingerprint readers easy to crack ? Maybe government agencies and high level crime syndicates. Not petty thief’s. I don’t use phone pin. I use fingerprint as discussed.

                I don’t use card pin so that’s not an issue. The problem would be a contactless card. Which is the debate we are currently engaged in.

                So no. I’ll stick with my phone using Google pay. I had my card skimmed with a card reader and my bank emptied. Funnily enough has never happened with my phone.

                • TWeaK@lemm.ee
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  ·
                  1 year ago

                  Fingerprint readers aren’t easier to crack, but they’re easy enough to spoof. That’s certainly getting harder - just like spoofing facial recognition is - but ultimately biometrics are heavily flawed as a security method. Primarily, it’s almost impossible for a person to change their biomentrics, meaning once they are compromised there is little if anything that can be done.

                  I would say that you shouldn’t use Google Pay. You should revert to using your card directly, particularly contactless card purchases. Not only will this give you better consumer rights in the event of any dispute, but also you won’t be giving even more detail to Google.

                  Even so, cash is king. You can always haggle a lower price if you’re paying in cash, particularly when you highlight the 1.5% that card providers (MasterCard and VISA) levy for all card transactions, on top of their statutory fee.

                  • Mojojojo1993@lemmy.world
                    link
                    fedilink
                    English
                    arrow-up
                    1
                    ·
                    1 year ago

                    Oh I don’t disagree with biometrics. They are the ultimate in security. But if you lose access you are fucked.

                    They could be spoofed. But each year it’s harder and harder and as I said. Petty crime would weigh up the odds. Contactless card that you can use a few times before locked or need to spoof a fingerprint to get into a phone and then use contactless.

                    I know which one id choose. Also we need to keep the phone connected to the Google account. Increasing my ability to trace you and retrieve my phone. Card will ping location but it doesn’t say where your house is. I can remotely lock my Google phone and trace it. Can’t do that with card. I think phone is a Much riskier endeavor.

                    And I will be er revert to using card. As states above it’s a worse experience in all aspects. Easier to lose card, easier to be stolen and worse protection. Always have phone on me and can do a multitude of jobs. Card can do one thing.

                    That’s the pay off isn’t it. Google data vs bank data. It’s the same data yet It inconveniences me more. Same outcome.

                    Literally no one is haggling. That’s a ridiculous proposition. When was the last time you haggle for a beer. Money is cumbersome and completely unnecessary. Yes it’s great for illicit nefarious reasons. 99% of people have no need for that. Cash means wallets pockets and then I’m stuck with useless change.

                    Cash hadn’t been king for a while. Jesus during COVID-19 places wouldn’t even accept it. Contactless or I don’t shop there.