I have to wonder how this will impact their partnership with Motorola. Presumably, Motorola will have more difficulty if they're found not to be complying with relevant law...
I hope GrapheneOS isn't completely banking on their partnership succeeding. If Motorola devices ever became the only devices that GrapheneOS works on, and it's being done with Motorola's blessing, then it could be more easily legislated out of existence.
I wholeheartedly support GrapheneOS but, because of that, I very much hope they don't box themselves into a corner that's then easy to 'wall off'.
Having said that, the hardware being restricted to Pixel devices was always a tenuous proposition based on Google's design choices. If Pixels remain supported whilst adding Motorola, that's only a good thing.
I don't understand what is their thought process. Am I supposed to get up and start driving in hopes of finding the kid(s)? By the time I wake up in the morning, usually, they have been found.
Just set it so that it doesn't bypass do-not-disturb and it'll have the same result while not disturbing sleep. Those awake will get the notification, and for the others, they can see it in the morning.
In the US, my state had a spate of sending amber alerts at 2am, mostly for old people escaping from old people homes.
I’m sure a ton of people just turned them off. They did ridiculous damage to the system.
I thought about starting an Amber Alert Milita; so any amber alert gets a fully armed response from the kind of people who join militias. That would have probably made the cops think twice about sending stupid alerts for stupid things.
Brenda escaping the memory care center yesterday morning (!) does not mean you should warn us all to watch out for her the next morning at 2am. Unless she’s found an axe and is going door to door chopping people up. That’s the only reason to send that alert.
I bet they killed a few people with heart attacks by setting off sirens in every bedroom in the county.
Does GrapheneOS fix that problem as well? Because at some point sending everything at the max alert level is going to get people killed. The max alert level should be reserved only for immediately threats to your life in the nearby area, because otherwise you train people to ignore the alerts.
> Wireless alerts are completely optional since GrapheneOS adds a toggle for the otherwise mandatory presidential alert type. This is particularly useful in Canada where the government abuses the system and sends every type of alert as a presidential alert to stop users from being able to opt out of weather and amber alerts.
You can disable the app involved to block all wireless alerts. You'll need to use adb though. I did that too because the government here doesn't respect the on/off toggle for alerts and they constantly send alerts when it rains or storms a bit. They come through even when emergency alerts are switched off completely in settings, unless that app is removed.
Sometimes they do it even twice in the same week. They're probably worried about a repeat of the Valencia floods and getting blamed. So they're constantly covering their asses. But I'm sick of them crying wolf all the time.
We don't have this amber thing but it works the same way (prioritised cell broadcasting) so it can be blocked.
The app is com.android.cellbroadcastreceiver on Android 13 and above
But yeah I view this in the same vein as the governments wanting to hijack our phones for spying on us (chatcontrol) or forced identification (the topic of this article). I'm sick and tired of my phone taking orders from other people than me.
* Set up a private space which will be used for google play services required apps (bank stuff, etc). Install google play and google play services in the private space. Do not install google play services on your main profile. Set the private space to lock after 5 mins of inactivity. Set up google play on a brand new google account. You'll need to provide a phone number during setup. I used my normal phone number, others who are more concerned about deanonymization could use rental phone numbers or other things. Install any apps into the private space.
* Try to install apps on your main profile, ideally open source, privacy respecting stuff. Some recent apps I've found that work great and replace google infested stuff - AntennaPod for podcasts, OrganicMaps for OSM maps, Obsidian for notetaking (google keep), KOReader for ebooks, Molly/Signal for messaging. Vanadium as the default browser works well, except it doesn't have adblock plus for youtube (it does some other ad blocking though and works fine).
Things I still don't have a great solution for:
* Android auto - I don't think it works from a private space due to auto locking. Still figuring this out
* Spotify - since it also needs to run in the background and I haven't found a better music replacement.
Overall graphene has been a far better experience and I like it much more, and feel more in control of my hardware.
One of the reasons I build my own LineageOS builds is because of terrible one-party consent recording laws (in places like California) there’s no geographic way in Android to check it on a state-by-state way. It just goes off country code and disables it for the US since quite a few states it’s illegal to do. For my state it isn’t illegal so I modified my builds to allow it.
There are other things like this too in Android disabled on per-country. Japan has a camera shutter noise that cannot be disabled but this was a request by their carriers, apparently not a law, big discussion under this review: https://review.lineageos.org/c/LineageOS/android_frameworks_...
> Japan has a camera shutter noise that cannot be disabled but this was a request by their carriers, apparently not a law
In some countries, regulation works in a way that the economy gets a chance to fix issues before the legislative needs to intervene. And with the Japanese and their massive issues with rampant sexual abuse... I get where that one came from, in addition to the two major phone brands not wanting to be associated with sexual abuse (which the last comment of the thread also references).
And personally, I do believe that this is the better way when forced with widespread ignorance of difficult to enforce laws - target the "accomplices" or "toolmakers".
I'm not making a judgement on it either way. These are things that are available to change in source. I'm just pointing it out, since others aren't aware of how things can be done.
But there are things locked out in the US I cannot get to. One of the things I've wanted to do for some years is turn on BeiDou reception, but it has a firmware geofence while inside CONUS. For Qualcomm devices there's no way that I've been able to find a way around this, it's not an opensource component. Just to preempt anyone saying it's because it's Chinese spywhere, Qualcomm/Tomtom engineers don't feel receive-only reception is a security risk (there's a report somewhere where military said the same, it's strictly a political prohibition): https://www.uscc.gov/sites/default/files/Research/Staff%20Re...
>One of the most annoying aspects of GrapheneOS is how its lock screen works. There is no way to display the lock screen without the phone being locked.
The author is being a bit pedantic though. Complaining about stuff that can't be fixed. For example yes aurora store sometimes doesn't work and definitely not over tor. But that's because its 'anonymous' option uses pooled Google accounts. Google tends to block them when they see thousands of users using the same account and blocking traffic to their servers over tor. Yet connecting directly to Google is the safest option here.
And Google maps does not require a Google account. I always use my android phones without any Google account and maps works fine. I think OSMAnd is way way better anyway but they don't have the public transport integration so I still use Google maps for that once in a while. For everything else OSMAnd really rocks and its maps are better than what Google and apple offer especially when you're not a car user.
But really expecting apple level polish from a free outfit it's just not fair.
Not sure why you are being downvoted, as this is a very valid conclusion for you to arrive at, individually.
To those downvoting, please note that this person did not say that nobody should switch, only that the information provided was a clear indication that it is not the right fit for them.
I, for one, greatly appreciated the detailed pro/con list in the post, as many of these would be genuine annoyances to me, and would have probably taken several months to encounter all of them.
That guide is outdated and chock-full with misinformation.
The author should not have conflated GrapheneOS and Android, it makes it seem like problems are GOS's fault, when it applies to all Android devices. It would be more accurate to call it an iOS to Android migration guide.
You do not need to treat GOS any differently than any other Android variation, you can use all the same apps you would like, there is no rule against using privacy invasive apps on GOS. If you want the best apps, sometimes you have to go with ones made by trillion-dollar companies that vacuum up data. GOS can even let you use these apps in a privacy-preserving way, with the network toggle and sandboxing.
>It is not trivial to synchronize data across machines in a secure and decentralized way. Privacy and decentralization are difficult problems to solve, with ever-changing goal posts. Apple decided to abandon even attempting to do this, and instead went with a band-aid approach that it calls “iCloud”.
I wouldn't underestimate iCloud with advanced data protection, it is arguably the most comprehensive and affordable e2ee cloud plan available.
>No globally-consistent way to “Undo” an action (unlike Shake-to-Undo on iOS).
I don't think this is a good feature, I am glad it is not built into Android.
>Sometimes the screen cannot be turned off when on a call.
I've never experienced this.
>OS can’t handle lots of files in folders. Folders with thousands of files are very slow to load and sync. Sometimes music apps fail to load all songs.
I have a 30+ GB music library and I have not had any issues. Android has a plethora of amazing music apps compared to iOS. See Powerampapp.com.
>Poor UI guidelines cause serious problems. For example, many music or video players don’t work well with the timeline playhead because it’s too close to the edge of the phone’s screen. Attempting to scrub near the beginning or end of a song causes Android’s gesture navigation (back button) to be triggered instead, closing the app.
I find the UI on Android to be much more fluid, reactive, and functional. This may have just been the specific app. GOS or Android cannot stop someone from making a buggy app any more than Apple can. There are many more Android apps that are Free and Open Source, which has a huge host of benefits. Material 3 expressive is the newest google design guideline and it looks a lot better than liquid glass imo. Yes, this is more recent against this blog, but it is being recommended now.
>Sometimes toggle swtiches in settings are also menu items that can be clicked to access more settings. Extraordinarily confusing UI/UX.
Apple also does this, see wifi in control center. I don't think it is confusing once you use your phone for a few days.
>Essential features like text-to-speech, speech-to-text, or “look up definition” have to be manually installed and setup.
I see less system apps as a pro, although GOS is working on, or added a built in tts or stt functionality recently iirc.
>Doesn’t always recognize wired headphones when they’re plugged in the first time. Sometimes even the second time. Could be related to one of these issues.
This has not been a problem for me. The usb control is a massive security improvement and comes with a sane default. Just works in my experience.
>Max volume is rather low for wired headphones, and there doesn’t seem to be a way to increase it.
Have not had a problem with that.
>Seemingly no way to select text in photos without an Internet connection, unlike the built-in AI-based offline-first feature in iOS Photos.
Ente photos has good device-based OCR.
> the GrapheneOS community also recommend the Aurora store
Aurora store is not recommended because it weakens security with no privacy benefit.
> One of the most annoying aspects of GrapheneOS is how its lock screen works.
This is completely outdated, inaccurate and confuses the way the lockscreen works.
>No privacy-preserving Maps app at the level of quality of Apple Maps or Google Maps.
Again, not a GOS problem. You can use the apps from the companies that spend millions on their Maps apps, or you can use the perfectly functional maps based on OSM.
>App Store madness.
If you don't want to be confused, just use the play store like is stated. It is secure and consistent. You ask for more freedom, you get the more freedom. Again, more complaints about apps specifically, not even the app not working due to GOS hardening, just the app.
>Contacts, Email, Calendars
There is no reason you can't use iCloud mail, proton mail, or Gmail on android. The vast majority of even privacy concious people do not self-host mail.
>Passwords
Even more user friendly, you can use free bitwarden, which is better than Apple Passwords or others that are not cross platform.
I switched from iOS to GOS a few months ago, and I have had nothing but good experiences. Contrary to what you may hear, GOS works absolutely fine out of the box. I have never had an app that doesn't work, you can install polished closed source apps without network permission, and the UI is miles ahead of iOS. I highly recommend anyone to try it out.
Of course :^) I'm close to jumping ship to GrapheneOS, but as a Swedish resident I really need our digital id services, digital mailbox, and banking apps. I have seen their page on app support, but I am slightly afraid its not up to date / will break any time. I guess the solution is to use one banking android phone and one GrapheneOS for everyday use.
I just have an old phone for all the banking stuff. And I use degoogled phones for real stuff. I don't need my bank when I'm out anyway.
Not using grapheneos though because pixels are expensive in my country. Also, I disagree with them on some points, like rooting. I don't think me having access to root makes my phone less secure. Obviously it should be secured properly so only I can use it, but that can be done. After all even an unrooted phone still has a root account and runs stuff as root, you just can't access it as a user. That means the OS vendor (grapheneos in this case) has more access rights on my phone than me (how else are they going to install updates), to me that's not right.
I just want to be able to inspect what is going on on my phone. What apps are storing about me on their private storage, and to be able to add root CAs so I can MITM their traffic to inspect it.
I believe GrapheneOS would only be an issue if the Swedish gov decides on using the Google Play Integrity API instead of Android's hardware attestation API (and requiring their apps to whitelist GrapheneOS's keys). So their stance doesn't really change much in terms of how banking apps currently work with GrapheneOS.
He's referring mostly to BankID which is a very secure MFA solution designed for banking purposes(all banks in Sweden accept the same mfa app) the inbox app is probably kivra, which is a email inbox which uses BankID for authentication, and is used for invoices and other "official business" mails.
There's also swish, which is instant payments to both friends and businesses. Swish also uses BankID.
BankID is also used to sign documents, file taxes, etc.etc.
Swedish society is largely built around this one official MFA solution, and having a phone where you cannot run it is a real hassle
I can only speak for my bank (Nordea), but they do offer a separate 2FA device you can order if you "can't use" your smartphone for whatever reason. As a solution it sucks, but technically you're not forced to use a mobile phone to login. I'd be surprised if other banks didn't offer similar fallbacks.
It's not an issue, we're just spoiled. It's such an amazing convenience that anything else seems like a huge and unnecessary hassle.
There is actually more a second MFA provider that is accepted almost everywhere, including the tax authority. I forget it's name and I've never tried it, so I can't say too much, but presumably it provides similar functionality as BankID
You would need to lug the device with you everywhere because BankID is used for all sort of things in Sweden. I couldn't even use a vending machine here without the BankID app.
I appreciate the principled stand, but on the other hand the CA law only requires users to self-identify when setting up accounts (and then the OS will expose age to apps), that seems fairly toothless (though wrongheaded) compared to TX and UT wanting to scan photo IDs[1]
To be clear, the Texas law only applies to mobile app stores, not the operating system, and there is no requirement to scan photo ID, just the vague,” commercially reasonable method of verification.”
Except for the fact that my age is now a piece of information that any tracking pixel or web malware can access at all times to de-anonymize me, even in incognito mode. But maybe that can be solved by collapsing all ages above 18 to just 18. Not sure if that violates the wording of the law though.
That is the wording of the California law, IIRC. The age brackets are under 13, 13-16, 16-18, and over 18. It also requires the OS to provide only the minimum information necessary to comply with the law, and only when necessary to comply with the law.
What can I show to 16-18 year olds that I can't show to 13-16 year olds?
The real meat of the law is requiring websites and applications to comply with this signal. Which would be one good reason why there are so many categories of seeming little difference. This then gives them the opportunity to fine and harass developers out of business for the most minor of infractions or instances of mislabeling.
But the "fact" that I told the OS I was 99yr old might be the data they're getting? To anyone who's setting up their own machine, it will be effectively optional: if you just want to make sure you fall in the "adult" bracket, you will tell the OS you're 25 (even if you're 13... or 99...). For kids whose parents are setting up devices, it could be an actual headache (assuming they're honest), but in that sense it's like a lot of other nannyware solutions, probably clunky, but possibly not all bad?
I hope you are allowed to operate in Canada Freely. If I am right, there is already something called Bill C-22, which is again a censorship and state level surveillance act under the guise of Child protection. Sooner or later Canada introduce this rule too.
Carney also recently signaled that he was open to a "debate" on a child social media ban. Such a ban would likely be enforced by age verification.
You should preemptively be messaging the Liberal cabinet ministers. And make sure to explicitly demand that anything that could force age verification or age assurance on Canadians is rejected:
> Marc Miller (Heritage Minister, the minister responsible for the upcoming online harms legislation that might implement such a ban): Marc.Miller@parl.gc.ca
> Sean Fraser (Justice Minister): sean.fraser@parl.gc.ca
> Mark Carney (Prime Minister): mark.carney@parl.gc.ca
> Mélanie Joly (Minister of Industry): melanie.joly@parl.gc.ca
It may also be worth messaging:
> Gary Anandasangaree (Minister of Public Safety): gary.anand@parl.gc.ca
> Rechie Valdez (Minister of Women and Gender Equality): rechie.valdez@parl.gc.ca
so what is going to happen? Will California issue slave catcher warrants for those who violate laws? will Free Stater sheriffs dispatch citizens on long haul flights to meet their fate in the Golden State?
I hope GrapheneOS isn't completely banking on their partnership succeeding. If Motorola devices ever became the only devices that GrapheneOS works on, and it's being done with Motorola's blessing, then it could be more easily legislated out of existence.
Having said that, the hardware being restricted to Pixel devices was always a tenuous proposition based on Google's design choices. If Pixels remain supported whilst adding Motorola, that's only a good thing.
Just set it so that it doesn't bypass do-not-disturb and it'll have the same result while not disturbing sleep. Those awake will get the notification, and for the others, they can see it in the morning.
I’m sure a ton of people just turned them off. They did ridiculous damage to the system.
I thought about starting an Amber Alert Milita; so any amber alert gets a fully armed response from the kind of people who join militias. That would have probably made the cops think twice about sending stupid alerts for stupid things.
Brenda escaping the memory care center yesterday morning (!) does not mean you should warn us all to watch out for her the next morning at 2am. Unless she’s found an axe and is going door to door chopping people up. That’s the only reason to send that alert.
I bet they killed a few people with heart attacks by setting off sirens in every bedroom in the county.
https://grapheneos.org/features#other-features
https://www.chp.ca.gov/news-alerts/alerts/Ebony-Alert/
https://www.chp.ca.gov/news-alerts/alerts/Feather-Alert/
This is crazy.
Sometimes they do it even twice in the same week. They're probably worried about a repeat of the Valencia floods and getting blamed. So they're constantly covering their asses. But I'm sick of them crying wolf all the time.
We don't have this amber thing but it works the same way (prioritised cell broadcasting) so it can be blocked.
The app is com.android.cellbroadcastreceiver on Android 13 and above
But yeah I view this in the same vein as the governments wanting to hijack our phones for spying on us (chatcontrol) or forced identification (the topic of this article). I'm sick and tired of my phone taking orders from other people than me.
* Follow instructions to install graphene on their website: https://grapheneos.org/install/
* Set up a private space which will be used for google play services required apps (bank stuff, etc). Install google play and google play services in the private space. Do not install google play services on your main profile. Set the private space to lock after 5 mins of inactivity. Set up google play on a brand new google account. You'll need to provide a phone number during setup. I used my normal phone number, others who are more concerned about deanonymization could use rental phone numbers or other things. Install any apps into the private space.
* Try to install apps on your main profile, ideally open source, privacy respecting stuff. Some recent apps I've found that work great and replace google infested stuff - AntennaPod for podcasts, OrganicMaps for OSM maps, Obsidian for notetaking (google keep), KOReader for ebooks, Molly/Signal for messaging. Vanadium as the default browser works well, except it doesn't have adblock plus for youtube (it does some other ad blocking though and works fine).
Things I still don't have a great solution for:
* Android auto - I don't think it works from a private space due to auto locking. Still figuring this out
* Spotify - since it also needs to run in the background and I haven't found a better music replacement.
Overall graphene has been a far better experience and I like it much more, and feel more in control of my hardware.
There are other things like this too in Android disabled on per-country. Japan has a camera shutter noise that cannot be disabled but this was a request by their carriers, apparently not a law, big discussion under this review: https://review.lineageos.org/c/LineageOS/android_frameworks_...
In some countries, regulation works in a way that the economy gets a chance to fix issues before the legislative needs to intervene. And with the Japanese and their massive issues with rampant sexual abuse... I get where that one came from, in addition to the two major phone brands not wanting to be associated with sexual abuse (which the last comment of the thread also references).
And personally, I do believe that this is the better way when forced with widespread ignorance of difficult to enforce laws - target the "accomplices" or "toolmakers".
But there are things locked out in the US I cannot get to. One of the things I've wanted to do for some years is turn on BeiDou reception, but it has a firmware geofence while inside CONUS. For Qualcomm devices there's no way that I've been able to find a way around this, it's not an opensource component. Just to preempt anyone saying it's because it's Chinese spywhere, Qualcomm/Tomtom engineers don't feel receive-only reception is a security risk (there's a report somewhere where military said the same, it's strictly a political prohibition): https://www.uscc.gov/sites/default/files/Research/Staff%20Re...
This made me chuckle.
And Google maps does not require a Google account. I always use my android phones without any Google account and maps works fine. I think OSMAnd is way way better anyway but they don't have the public transport integration so I still use Google maps for that once in a while. For everything else OSMAnd really rocks and its maps are better than what Google and apple offer especially when you're not a car user.
But really expecting apple level polish from a free outfit it's just not fair.
To those downvoting, please note that this person did not say that nobody should switch, only that the information provided was a clear indication that it is not the right fit for them.
I, for one, greatly appreciated the detailed pro/con list in the post, as many of these would be genuine annoyances to me, and would have probably taken several months to encounter all of them.
The author should not have conflated GrapheneOS and Android, it makes it seem like problems are GOS's fault, when it applies to all Android devices. It would be more accurate to call it an iOS to Android migration guide.
You do not need to treat GOS any differently than any other Android variation, you can use all the same apps you would like, there is no rule against using privacy invasive apps on GOS. If you want the best apps, sometimes you have to go with ones made by trillion-dollar companies that vacuum up data. GOS can even let you use these apps in a privacy-preserving way, with the network toggle and sandboxing.
>It is not trivial to synchronize data across machines in a secure and decentralized way. Privacy and decentralization are difficult problems to solve, with ever-changing goal posts. Apple decided to abandon even attempting to do this, and instead went with a band-aid approach that it calls “iCloud”.
I wouldn't underestimate iCloud with advanced data protection, it is arguably the most comprehensive and affordable e2ee cloud plan available.
>No globally-consistent way to “Undo” an action (unlike Shake-to-Undo on iOS).
I don't think this is a good feature, I am glad it is not built into Android.
>Sometimes the screen cannot be turned off when on a call. I've never experienced this.
>OS can’t handle lots of files in folders. Folders with thousands of files are very slow to load and sync. Sometimes music apps fail to load all songs.
I have a 30+ GB music library and I have not had any issues. Android has a plethora of amazing music apps compared to iOS. See Powerampapp.com.
>Poor UI guidelines cause serious problems. For example, many music or video players don’t work well with the timeline playhead because it’s too close to the edge of the phone’s screen. Attempting to scrub near the beginning or end of a song causes Android’s gesture navigation (back button) to be triggered instead, closing the app.
I find the UI on Android to be much more fluid, reactive, and functional. This may have just been the specific app. GOS or Android cannot stop someone from making a buggy app any more than Apple can. There are many more Android apps that are Free and Open Source, which has a huge host of benefits. Material 3 expressive is the newest google design guideline and it looks a lot better than liquid glass imo. Yes, this is more recent against this blog, but it is being recommended now.
>Sometimes toggle swtiches in settings are also menu items that can be clicked to access more settings. Extraordinarily confusing UI/UX.
Apple also does this, see wifi in control center. I don't think it is confusing once you use your phone for a few days.
>Essential features like text-to-speech, speech-to-text, or “look up definition” have to be manually installed and setup. I see less system apps as a pro, although GOS is working on, or added a built in tts or stt functionality recently iirc.
>Doesn’t always recognize wired headphones when they’re plugged in the first time. Sometimes even the second time. Could be related to one of these issues.
This has not been a problem for me. The usb control is a massive security improvement and comes with a sane default. Just works in my experience.
>Max volume is rather low for wired headphones, and there doesn’t seem to be a way to increase it.
Have not had a problem with that.
>Seemingly no way to select text in photos without an Internet connection, unlike the built-in AI-based offline-first feature in iOS Photos.
Ente photos has good device-based OCR.
> the GrapheneOS community also recommend the Aurora store
Aurora store is not recommended because it weakens security with no privacy benefit.
> One of the most annoying aspects of GrapheneOS is how its lock screen works.
This is completely outdated, inaccurate and confuses the way the lockscreen works.
>No privacy-preserving Maps app at the level of quality of Apple Maps or Google Maps.
Again, not a GOS problem. You can use the apps from the companies that spend millions on their Maps apps, or you can use the perfectly functional maps based on OSM.
>App Store madness.
If you don't want to be confused, just use the play store like is stated. It is secure and consistent. You ask for more freedom, you get the more freedom. Again, more complaints about apps specifically, not even the app not working due to GOS hardening, just the app.
>Contacts, Email, Calendars
There is no reason you can't use iCloud mail, proton mail, or Gmail on android. The vast majority of even privacy concious people do not self-host mail.
>Passwords
Even more user friendly, you can use free bitwarden, which is better than Apple Passwords or others that are not cross platform.
I switched from iOS to GOS a few months ago, and I have had nothing but good experiences. Contrary to what you may hear, GOS works absolutely fine out of the box. I have never had an app that doesn't work, you can install polished closed source apps without network permission, and the UI is miles ahead of iOS. I highly recommend anyone to try it out.
Not using grapheneos though because pixels are expensive in my country. Also, I disagree with them on some points, like rooting. I don't think me having access to root makes my phone less secure. Obviously it should be secured properly so only I can use it, but that can be done. After all even an unrooted phone still has a root account and runs stuff as root, you just can't access it as a user. That means the OS vendor (grapheneos in this case) has more access rights on my phone than me (how else are they going to install updates), to me that's not right.
I just want to be able to inspect what is going on on my phone. What apps are storing about me on their private storage, and to be able to add root CAs so I can MITM their traffic to inspect it.
There's also swish, which is instant payments to both friends and businesses. Swish also uses BankID.
BankID is also used to sign documents, file taxes, etc.etc.
Swedish society is largely built around this one official MFA solution, and having a phone where you cannot run it is a real hassle
There is actually more a second MFA provider that is accepted almost everywhere, including the tax authority. I forget it's name and I've never tried it, so I can't say too much, but presumably it provides similar functionality as BankID
1: https://www.tomshardware.com/software/operating-systems/cali...
The real meat of the law is requiring websites and applications to comply with this signal. Which would be one good reason why there are so many categories of seeming little difference. This then gives them the opportunity to fine and harass developers out of business for the most minor of infractions or instances of mislabeling.
Keep an eye on michaelgeist.ca. If there are petitions to sign to oppose it, you'll probably find out there.
You should preemptively be messaging the Liberal cabinet ministers. And make sure to explicitly demand that anything that could force age verification or age assurance on Canadians is rejected:
> Marc Miller (Heritage Minister, the minister responsible for the upcoming online harms legislation that might implement such a ban): Marc.Miller@parl.gc.ca
> Sean Fraser (Justice Minister): sean.fraser@parl.gc.ca
> Mark Carney (Prime Minister): mark.carney@parl.gc.ca
> Mélanie Joly (Minister of Industry): melanie.joly@parl.gc.ca
It may also be worth messaging:
> Gary Anandasangaree (Minister of Public Safety): gary.anand@parl.gc.ca
> Rechie Valdez (Minister of Women and Gender Equality): rechie.valdez@parl.gc.ca