Apathy Thanks. Based on the available evidence, I think this additional information pretty much confirms that they are using Google Play Integrity to check for a Google-certified OS.

The best bet, the way I see it, would be to try to convince them to implement hardware attestation. I have a feeling that making them back down on Play Integrity OS-checks specifically is going to be really hard, considering their very clear public announcement that it is "protecting users". I imagine they would be worried about criticisms regarding backing down on that practice.

      fid02 That would be primarily a phrasing thing: Instead of saying "we're backing down from this", phrase it more like "We are taking this a step further, both in terms of security, but also in the name of privacy and to avoid lock-in with a single specific vendor."

          12 days later

          I ended up ordering a MitID kodeviser (hard token) Monday evening, it shipped Tuesday, arrived today, and it'll be working from tomorrow :)

          13 days later

          Apathy did you ever get a response back from them? I am have begun to carry my MitID code authenticator with, as I fear that the MitID app might just stop working for me.

          So a definitive answer, if you recieved, any at all, would be nice.

            a month later

            Does anyone know if theres been an update on this? I am interested in upgrading to a Pixel 9, but losing MitID authentication with my phone kinda sucks, so I might stay with my current phone until my previously activated MitID stops working. Alternatively, does anyone know if transferring Authenticators skips the Play Integrity check?

              CutStandard8309 i must refer to my workaround in this threat from february 21. Please go read that, this fix still works making GPS only needed for initial setup. I use MitID everyday on my pixel 5

                  Duckduck That is not a viable solution anymore, as MitID has stated using Play Integrity during the activation process, so the presence of Play Services is no longer enough to activate MitID. Old installations of MitID work fine for the time, but activating a new authenticator is currently not possible.

                  I have, like @Apathy contacted MitID and suggested that they either start using hardware attestation or allow advanced users to somehow opt out of the Play Integrity checks.

                    5 days later

                    There is a new version of MitID (3.4.2) with a few UI changes. I updated to it and it kept working without any (new) issues.

                      15 days later

                      I hope MitID fixes this soon.
                      I get the standard your phone is rooted/compromised/downloaded outside play store message. I’ve been trying for a few days to move MitID from my iPhone to my grapheneos phone using “copy from other MitID app” and no luck so far.
                      Using pixel 8 pro with the latest updates.

                      I guess getting an updated passport or a code from Borgerservice won’t help either.
                      This is very frustrating, sadly. (I’m angry at MitID not grapheneos)

                      lbschenkel before I was able to unlock with the finger print but the option is not available any more. Perhaps I need to set it up again.

                        19 days later

                        Havent updatet yet. As i understand from reading here, the fingerprint function will stop working with this newer version, but MitID will still work. Am i correct?

                        Do any of you guys use vanadium as the browser. I cannot get redirection to work with mitid when opening in incognito (my default setup in vanadium) Perhaps this is as designet. But it forces me to use the code method every time, otherwise it will promt me to scan a QR code, not possible from the phone itself as the promt is on the phone

                        a month later

                        Hello, does anyone know if there has been an update to the play Integriy situation? I recently dropped my phone and the screen cracked. Somehow it covered by buyers guarantee, but losing access to mitid and having to rely on the code generator would be a pain, so I am considering just toughing out the cracked screen instead.

                        5 days later

                        Hi I just started using GOS and installed MitID 3.4.3 and GPS. I can open the app and scan my id and face etc but once I am done with all the steps, I get the error that I cannot activate the app because it might be rooted...

                        For GPS I allowed networking and tried with and without exploit protection compatibility.

                        Any ideas?

                          user12 Could you please read a bit further up this thread? It has been explained that MitId is enforcing integrity checks during activation. They are choosing to block non-rooted alternate OSs such as GrapheneOS.