I'm going to maintain this gist as well: https://gist.github.com/lbschenkel/4199be415f2a139b64688ae74c92a7fc
Status of MitID app
[deleted]
Everyone has freewill - probably;)
It hearts me deeply when I read "privacy" oriented people install GOS and then install proprietary stuff, the worst... governmental garbage. This can be considered split personality.:)
If you desire to have governmental garbage app with you or other proprietary apps just buy cheap Android phone and stop poisoning GOS.
- Edited
Be respectful: Based on the posts in this thread, this is an issue with the Danish Government thinking its a good idea to develop and run their own app that all Danish citizens are required to use to read their MAIL and log into any bank account. This isn't something we can even comprehend as being a necessity in the United States because you can use GrapheneOS with nothing but F-Droid apps and not have any aspects of your life impacted.
This is why the work of the EFF and GNU are so important because they're able to lobby the government that not supporting open source and security-driven computing is a necessity in today's society.
[deleted]
- Edited
BalooRJ
First of all you're spreading disinformation:
BalooRJ that all Danish citizens are required to use to read their MAIL and log into any bank account.
This app is not obligatory. I posted the link in my previous post which is now hidden - Read this please
Secondly, why my post is hidden? What is going on here? Was it @matchboxbananasynergy who implements censorship not only on this forum?
[deleted] It has nothing to do with censorship. I removed your post because it was disrespectful, off-topic and contributed nothing to the discussion. Please keep the conversation focused on the actual topic at hand, instead of telling other people how to use their devices.
[deleted]
- Edited
I do not agree with you. This post was about fundamentally approach to privacy.
Disrespectful? In which part of my sentences?
You often give in your posts "right' advices...
[deleted] I have unhidden your post, which can be found here, lest I be accused of censorship, of all things.
Now, as for why I think it is off-topic and not relevant to the discussion. Do you think that people who live in that country and want to use this app don't know of the alternative? They've chosen to use the app regardless, and there's a community effort to document when it works, when it doesn't, and what the overall status with it is. They didn't ask to be told whether they should use the app or not.
This is not the first time you've made similar comments, so please try to keep things productive and on-topic.
And as for "right" advice, which I assume means you don't agree with what I've posted in other threads - that's completely fine. I don't preach to people, and I don't expect people to take my advice as gospel. I try to stick to the facts of the matter and arm people with as much accurate information as I can so that they can make educated choices that suit their needs, even if that means that they go with a path that I would advise against.
I hope that this can be the end of this discussion, so that this thread can get back to its primary purpose, which is not about whether people should be using a particular app or not according to your opinion, but rather about whether the app will work for them with GrapheneOS.
- Edited
[deleted]: You are not owed any explanation, but I will engage with you for a single time.
Do you live in Denmark? Have you ever considered your suggestions?
Everybody here knows about the code display. I have one, and I have mentioned it since the very beginning of this thread. However, it's wise to have more than one authenticator to prevent you from being locked out: they can break, run out of battery, be lost, or stolen.
If you are completely locked out, you need an appointment to activate your MitID again in person; this might take weeks and you cannot do anything in the meantime, not even pay bills or use government/banking websites (and some other ones). Most banks are only providing services via phone or website, and if you call you need to authenticate yourself — using MitID.
And you cannot have more than one code display: if you order a new one the first one is automatically revoked. So you're forced to have a backup authenticator in app form.
A second phone, even though it might be a cheap one, is not free. You have to buy one, and it has to be stock Android with Play Services and all the privacy issues that come with it. You don't want to be carrying this device around with you. If we didn't care about that, we would not be using GrapheneOS.
But fine, let's say you have a different device only for MitID and always leave it at home. Then you carry the code display. You know what? That is exactly what I was doing. And then you know what happens? You need to pay while you're in the street via an online payment (imagine having to do a transfer or topping up a public transport balance), and then you need to authenticate via MitID to approve the transaction, and the bank UI defaults to using the app and it does not offer a way to change to the code display. It will only allow the code display if there's no app registered in your account. This should not be happening, it's probably a UI bug, however that does not help you, does it? What if now you need to make that approval to go home, and to be able to go home you now need that authenticator that is at home?
If we could have two authenticator dongles, or have paper codes as the previous system (NemID), then I wouldn't be bothering with this app. But you can't, and the government retired the old system for this one, which is "more secure".
And I absolutely despise the idea that to be a citizen of your own country, your government is imposing on you that you have to have an account with a foreign conglomerate such as Apple or Google, and accept their abhorrent terms of service and "privacy" policies — to be able to interact with your own local bank or government. And if some rogue algorithm from those conglomerates in a different jurisdiction that is not yours decides one day that you have broken some unspecified rule that they won't tell you, your account gets banned for life with no possibility of recourse and you get permanently locked out of the store, and from those apps. Daily life is not going be fun for you.
At least MitID has the code dongle as an option. Consider now the analogous system from neighbour Sweden called BankID, which is as essential (if not more) and only exists in app form, there is no dongle — you must have iPhone or Android with Play Services.
Most people are actually fine with this. Some of us, like me, are strongly against it. But it doesn't matter, we're a minority and the government is "digitizing" everything and we have no option but to cope with the means at our disposal. So I'm here trying to help others fellow GrapheneOS users who are stuck in the same crappy boat, and if you are not here to help as well then at least get off your high horse and go importunate someone else.
[deleted]
lbschenkel
Thank you for this post.
No one said that trying to live without conformity is easy.
Everything depends on our motivation.
I try not to use bank cards and totally refused to use mobile payments. Is it easy? No. I often go out from premises when I hear "We're cashless".
In Scandinavia this is on regular basis.
You mentioned Sweden. In Sweden you can live without BankID. You can interact with public entities, banks, use public transport etc. Please do not write: you MUST have Iphone Android..., it's essential. It is NOT true!
BankID is not a government issued app/solution. You are probably from Sweden, you should know that.
My position is that people like GOS' users should be educated to avoid surveillance capitalism, not given prosthesis
It is about mindset. The problem is that people claim around "You must have this, you cannot live without it etc" and people like sheep follow. " I was told that I must use it".
- Edited
Hi Ib
Thanks for your effort. I can confirm that my version 3.0.2 have the same issue and I, like you, haven't been able to resolve it no matter what shenanigans i've gone through.
Thanks for the tip of manually downgrading to v. 3.0.1 through Aurora. That's a life saver though I didn't have a bacpup and have go to borgerservice to get an activation code. DOH!
I'm relatively new to GOS and didn't know of this issue untill v. 3.0.2 was out. I'll for sure get a code dongle for backup.
I really have to force myself not to start ranting too much about this app so let me just say that I FARKING HATE IT, IT'S A SHITTY PEACE OF PROPRIETARY GARBAGE!!
...that helped
...a little bit.
trilogy6202 Do you have a biometric passport or ID card? You should try scanning your passport/ID via the app, it might save you the trip to borgerservice.
- Edited
No unfortunately my passport is of the old type without chip and I didn't see options to use other physical ID options.
I even tried reviving my old NemID app but that only work's for the initial activation/acquisition of MitID.
Which other (physical) Danish ID cards can be "biometric" and used to activate MitID?
I don't have digital drivers license, etc.
trilogy6202 Denmark does not have any ID card so that option is not available for you (in case you are Danish). If you are an European citizen, then a national ID card (the one you can use to travel in EU in lieu of the passport) can be used, if it's a newish one that is biometric.
Other IDs such as driving licenses cannot be used. It must be a travel document.
- Edited
I'm danish, I just misinterpreted the first sentence in your response then... The part about "ID card".
trilogy6202 Are you sure you don't have a biometric passport? All Danish passports issued from 2006 onwards should be biometric.
Hmm... I don't remember exactly how old it is but it's expired. I tried scanning it like 20 times without success - without cover.
- Edited
trilogy6202 The passport has the date of issue on the biodata page. But if it's expired, it doesn't matter. It must be valid.
Ahh okay, that explains.
lbschenkel I know it's off topic but I was looking at the code display as an backup option and found that they also have the "MitID Chip". Looking into it's spec, I found that it use the FIDO U2F standard which made me wonder if I could register any FIDO U2F complaint hardware tokens with MitID, like the Yubikey 5 NFC?
Do you know if that is possible?