But even if you can replace everything, including TEE, the Android platform will still provide mechanisms to allow apps to know what software they are running on. And as long as apps expect to run on "Google Certified" systems, you still won't escape the "root detection" issue
Conversation
Replying to
same opinion. Android should provide trusted environment. but, large companies should not abuse it, unlike what they are now. and AOSP should not be Google dependent THAT much. they are taking controls away from user. revoking user access from ~/Android was huge mistake.
2
1
Android and Google is now treating user defined environment 'insecure'. bare APK installation is described 'dangerous' even if there is no GApps. ZipSigner lib has removed long ago, so Play Protect marks debuggable apps as danger.
1
1
while installation from Google Play has improved, there is no secure way for alternatives. managing apps are not possible in modern Android because of forced scoped storage.
you will know there is no way to solve these without root.
1
1
> there is no secure way for alternatives.
Not the case at all and not sure what you're basing that upon.
> managing apps are not possible in modern Android because of forced scoped storage.
That has nothing to do with scoped storage. Again, you're misunderstanding this...
1
Scoped storage means that apps no longer have the ability to request complete access to user files. The user has access via the system file manager and can grant access to those files/directories when apps open up the system file manager UI for it. It's not relevant to this.
1
1
1
An app store client can download and install apps as always. Android 12 adds the ability for non-privileged apps to perform unattended updates of modern apps they've installed. Support for alternate app stores got much better and scoped storage didn't negatively impact it at all.
1
1
1
The user can also still manually authorize an app to be a file manager for their files. It's not possible for an app to request it via a dialog on their own, but they can send the user to relevant settings menu. Play Store has rules for which apps can use this but the OS doesn't.
1
The preferred / default storage for apps has always been their own sandboxed app storage. Scoped storage is entirely about the user's storage directory, not the per-app sandboxed storage which is unchanged. Scoped storage gives users more control over apps accessing their files.
1
The entire point of scoped storage is to force apps to use the system file manager UI to request access to files/directories as they've been able to do since Android 4.4 for files and 5.0 for directories. The whole point is putting users in charge of which files can be accessed.
1
There are still coarse ways of obtaining access to photos and other media but those are presumably going to be phased out in the long term for apps not set as the default camera, gallery, etc. in order to require user consent to access specific files/directories like non-media.