Notable changes in version 65:
- add pinning and display for app variant to prepare for having multiple app variants
- add support for new Play Signing variant (
app.attestation.auditor.play
) as Auditee - change "attestation app" to "Auditor app" in error messages
- improve error message wording
- update Material library to 1.7.0
- remove dead code for supporting Auditor v25 and below
A full list of changes from the previous release (version 64) is available through the Git commit log between the releases.
The Auditor app uses hardware security features on supported devices to validate the integrity of the operating system from another Android device. It will verify that the device is running the stock operating system with the bootloader locked and that no tampering with the operating system has occurred. It will also detect downgrades to a previous version.
It cannot be bypassed by modifying or tampering with the operating system (OS) because it receives signed device information from the device's Trusted Execution Environment (TEE) or Hardware Security Module (HSM) including the verified boot state, operating system variant and operating system version. The verification is much more meaningful after the initial pairing as the app primarily relies on Trust On First Use via pinning. It also verifies the identity of the device after the initial verification.