Isn't device lock controller against the security ethos of graphene os? Apologies if this has been discussed, I searched and didn't see anything.

"Device Lock Controller enables device management for credit providers. Your provider can remotely restrict access to your device if you don't make payments."

    vq12 There's no such thing included in GrapheneOS. What's the relevance to it? It wouldn't even work on GrapheneOS due to it not having privileged integration for it and also not having the anti-theft feature it relies on (https://grapheneos.org/faq#anti-theft) since it's not a security feature and creates a risk of users losing their device is they forget their unlock method while not actually preventing theft but rather simply stopping the thief using the device after wiping it clean.

    • vq12 replied to this.

      GrapheneOS when you say it's not included with graphene os, do you mean it's an AOSP thing so graphene can't do anything about it?

      I just am learning about it's existence and was surprised to see it on my phone. Pixel 8, no google services

        vq12 You're referring to an APEX module providing open source, low-level infrastructure for this and other features. The functionality you're referring to is not available on GrapheneOS. The APEX module provides standard Android functionality. The Google Play functionality you're referring to won't work on GrapheneOS.

        • vq12 replied to this.

          GrapheneOS I think I understand, so there is device lock controller the apex module and device lock controller the Google play store app and they are different things. Do I understand that correctly?

          I'm glad to hear it doesn't have the functionality that I thought it had

            vq12 The open source APEX module provides infrastructure for this which isn't used in GrapheneOS and can't be used for this. Even if it was possible to use it, someone could just wipe the device since we don't include an anti-theft lockout after wiping since it's not a security feature and would only result in bricked devices when people forget passwords. It would cost people money rather than saving it. If someone steals the phone, stopping them using it after wiping probably isn't going to get them to return it and the info they'd need to return it would be gone after wiping anyway. The purpose of the feature in the stock OS is theft deterrence because thieves become aware that phones with lock methods enabled are likely not going to be possible to use after wiping. https://grapheneos.org/faq#anti-theft covers this. This financing lockout feature depends on that.

            [removed link to a whole bunch of misinformation from a forum controlled by a troll]

            The app is listed as installed, but from the previous comments here it sounds like it does not get used, but I wonder why this app does have Network permissions by default then.

              7 days later