IdeaWell

Project ideas from Hacker News discussions.

European digital ID wallets rely on safety services of Google and Apple

Original Article

Hacker News Discussion

📝 Discussion Summary (Click to expand)

4 Predominant Themes in the Hacker‑News Discussion

# Theme Core Takeaways
1 Heavy reliance on US giants – “the world could be a more open place, but constraint, rules and control are too pleasing to not implement, sadly.” Users warn that governments are cementing monopolies with Google/Apple, noting “Google/Apple will be a bank themselves, as is the danger with governments.” (djantje) and “Europe will never have digital sovereignty from the US.” (VWWHFSfQ).
2 Smartphone‑only digital‑wallet dominance – many argue that mandatory use of Google‑Play or Apple services forces lock‑in. “Yes, but you can’t sign the device… the only reason anyone uses a phone to verify their identity is that it’s already there in your pocket.” (djantje) and “Without the proper laws… one’s rights were always just a technological advance away from being taken away.” (lotsofpulp).
3 Viable technical alternatives exist – hardware tokens and OS‑agnostic solutions can break the monopoly. “There are viable third alternatives which do not require building a full smartphone stack.” (ulrikrasmussen) and “Regulations can create monopolies; smaller players can’t afford them, so larger firms end up controlling the market.” (phyzix5761).
4 EU policy concerns → loss of sovereignty & privacy – fear that the Digital Identity Wallet sacrifices privacy and is used to enforce political control. “The EU legally forbids member states from making a smartphone mandatory to access public services … designed the EUDI Wallet framework to allow for other physical form factors.” (microtonal) and “I question that premise.” (hilios).

TL;DR – The thread converges on: (1) the uneasy dependence on Google/Apple, (2) the de‑facto smartphone‑only wallet regime, (3) the existence of open‑source/hardware alternatives, and (4) the worry that EU regulations may cement US‑centric dependency rather than foster genuine digital sovereignty.

🚀 Project Ideas

Generating project ideas…

EU-OpenID Wallet SDK

Summary

  • A modular, open‑source wallet SDK that lets developers integrate EU Digital Identity verification without pulling in Google Play Services or Apple APIs, using W3C Verifiable Credentials and ZKP‑based age checks.
  • Enables any device (GrapheneOS, LineageOS, desktop browsers) to request, receive, and present digital credentials while keeping user data on‑device.

Details

Key Value
Target Audience EU governments, fintech & e‑government platforms, open‑source app developers
Core Feature Cross‑platform credential handling with hardware‑backed attestation fallback
Tech Stack Rust (core), TypeScript (frontend), libsodium, WebCrypto, Android Keystore / macOS Secure Enclave, OpenAPI spec
Difficulty Medium
Monetization Revenue-ready: B2B licensing per integration tier

Notes

  • HN users repeatedly lament the “Google/Apple lock‑in” – this SDK directly removes that dependency.
  • Could spark a wave of native EU‑government apps that work on non‑Google ROMs, creating market pressure for broader OS support.

SecID – Self‑Sovereign Identity Hardware Token

Summary

  • A low‑cost, USB/NFC security token that stores EU‑issued digital credentials and performs blind‑signature age verification offline.
  • Users can plug it into any computer or tap it on a phone to prove identity without sharing personal data or relying on a smartphone OS.

Details

Key Value
Target Audience Citizens seeking privacy‑preserving identity proof, elderly & low‑tech users, privacy advocates
Core Feature Secure element with open‑source firmware for blind‑signature verification
Tech Stack NXP A71CH Secure Element, FreeRTOS, OpenTitan HAL, PKCS#11 API, Bluetooth Low Energy (optional)
Difficulty High
Monetization Revenue-ready: €19.99 per unit + optional firmware update subscription

Notes

  • Commenters like ulrikrasmussen argue hardware tokens are “the only way to escape OS‑level lock‑in” – this product fulfills that call.
  • Potential to be bundled with public services for free, driving adoption while generating modest profit.

AttestBridge – Open‑Source Remote Attestation Service

Summary

  • A SaaS that provides standardized remote attestation APIs based on open‑source Android Hardware Attestation and Linux measured boot, allowing third‑party apps to prove device integrity without Google Play Integrity.
  • Offers a free tier for public services and paid enterprise plans for regulated industries.

Details

Key Value
Target Audience Cloud‑service providers, identity providers, EU regulator‑backed digital wallets
Core Feature Multi‑platform attestation (GrapheneOS, Pixel, Linux) via attested key‑chains hosted on EU‑hosted servers
Tech Stack Go (API), WebAuthn, TEE (ARM TrustZone), Docker, Prometheus monitoring
Difficulty High
Monetization Revenue-ready: Usage‑based pricing €0.001 per attestation, flat €299/mo for enterprise

Notes

  • Directly addresses Retr0id’s concern that only Google/Apple can currently attest, offering a neutral alternative.
  • Could be adopted by microtonal’s “fair” attestation community, fostering ecosystem growth.

IdVoice – Decentralized Advocacy Platform for Digital‑ID Sovereignty

Summary

  • A community‑driven petition & coordination hub that aggregates citizen concerns about mandatory Google/Apple‑based ID wallets, provides legal templates, and runs awareness campaigns using blockchain‑backed voting to signal public pressure.
  • Allows users to contribute funds for legal challenges against anti‑competitive practices.

Details

Key Value
Target Audience EU citizens, privacy NGOs, digital‑rights activists
Core Feature Crowd‑sourced petitions, legal‑brief marketplace, token‑governed voting on policy demands
Tech Stack React, IPFS (for immutable statements), Polygon (voting), Stripe (donations)
Difficulty Low
Monetization Revenue-ready: 2% transaction fee on donations, premium analytics subscription

Notes

  • Echoes viking_sven's call for “more discussion” and realusername's frustration about “hobbyist” alternatives – this platform scales that voice.
  • Provides a concrete channel for HN‑style debate to translate into coordinated political action, potentially influencing regulators.

Read Later