22Ara
Why does SafetyNet target non-rooted custom ROMs?
I understand that a rooted phone exposes its user to security issues, because a malware could do more damage in a rooted environment than in a non-rooted one.
But why target up-to-date, non-rooted custom ROMs like Lineage ?
In this answer, it is said
SafetyNet, etc. aren't about keeping you secure. They're about keeping app developers' stuff secure from you.
I dont understand why app developers should rely on a client integrity check. I thought the backend should never trust the client in the first place.