After Google implements this, will I still be able to "side-load" (install any software) on Android-derivative OSes like GrapheneOS?
After Google implements this, will I still be able to "side-load" (install any software) on Android-derivative OSes like GrapheneOS?
Currently it seems that Google is pushing for hardware attestation, so you might be able to install Graphene/Lineage if your phone manufacturer allows you to unlock your bootloader, but many Play Store apps won't work as they'll detect your root. It's actually gotten pretty insane how every low-value app considers themselves the centre of the world and unable to run on a rooted device.
Example: the loyalty card app for a local store chain - there's no money in it, I can just get some discounts when I use it. So an attacker would have to steal my phone, somehow unlock it, and then they can use my loyalty card (btw which is free to obtain for anyone and there are no tiers) to get some discounts. And for that, they have implemented a pretty decent root checker which i had to put in some effort to overcome. And there are many more like it.
There might be insurance and bank contracts higher up the chain that classify it as a financial dealing and thus require stricter conformance. I'm speculating tbh I have no idea for sure.
> as they'll detect your root
A small clarification, neither GrapheneOS or LineageOS runs as root. Rooting is different from "installing an alternate OS".
Yes (but see my comment about the permission system), however, the future of bootloader unlocking and AOSP is uncertain... :(
With one switch, one nasty update (disabling bootloader unlocking on Pixels), Google could kill GrapheneOS..