M.O.M.O.

> An Android-specific API that does not target the open web...

This leads to more questions than answers:
1. Suspiciously specific denial. I thought WEI was never supposed to "target" anything. So why do they imply it as an item under dispute?
2. Android already has hardware roots of trust (SafetyNet), which can be set to require additional online attestation from Google (uncrackable in practice). Is that not redundant?
3. What other path is there, besides embedding it into Chrome/Android, and then merging it to Chrome overall?

Like 2 Nov 2023 at 21:39 | Wall-to-wall | Open on mk.absturztau.be