- May 29, 2023
Back in July, Google's work on a Web Integrity API emerged and many equated it to DRM. The company announced today it's not proceeding...
With this proposal, Google wanted to give websites a way to confirm the authenticity of the user and their device/browser.
The Web Integrity API would let websites “request a token that attests key facts about the environment their client code is running in.” It’s not all too different from the Play Integrity API (SafetyNet) on Android that Google Wallet and other banking apps use to make sure a device hasn’t been tampered with (rooted).Users often depend on websites trusting the client environment they run in. This trust may assume that the client environment is honest about certain aspects of itself, keeps user data and intellectual property secure, and is transparent about whether or not a human is using it.
An Android-specific API that does not target the open web is being considered here.