Skip to content

62

Compare
Choose a tag to compare
@thestinger thestinger released this 14 Oct 22:47
· 293 commits to main since this release
62

Notable changes in version 62:

  • temporarily disable StrongBox and use the TEE for Pixel 7 and Pixel 7 Pro since StrongBox attestation breaks after OS upgrades due to a HAL or firmware bug (has been reported upstream)

A full list of changes from the previous release (version 61) is available through the Git commit log between the releases.


The Auditor app uses hardware security features on supported devices to validate the integrity of the operating system from another Android device. It will verify that the device is running the stock operating system with the bootloader locked and that no tampering with the operating system has occurred. It will also detect downgrades to a previous version.

It cannot be bypassed by modifying or tampering with the operating system (OS) because it receives signed device information from the device's Trusted Execution Environment (TEE) or Hardware Security Module (HSM) including the verified boot state, operating system variant and operating system version. The verification is much more meaningful after the initial pairing as the app primarily relies on Trust On First Use via pinning. It also verifies the identity of the device after the initial verification.

See the tutorial for detailed usage instructions. This is included as the Help entry in the app menu. The app also provides basic guidance through the process. See the documentation for a more detailed overview.