This article isn’t clear on one question: Are users still able to add new trusted authorities? I have a custom CA installed so as to be able to access self-hosted https services inside my home network. Given that Android now prevents you from accessing sites with an untrusted/self-signed cert, I need this feature.
This article isn’t clear on one question: Are users still able to add new trusted authorities? I have a custom CA installed so as to be able to access self-hosted https services inside my home network. Given that Android now prevents you from accessing sites with an untrusted/self-signed cert, I need this feature.
Aka, you cannot untrust google’s certs. And google can do whatever the fuck they want, and you cannot change or alter that behaviour.
So, if google wants to publish a root CA, that allows them to act on behalf of any other domain, they can do that. etc.
Sounds like a powerful tool for law enforcement