samuellb
Linux phones are coming, what would it take to implement Mobilt BankID?
As Purism hopefully soon will be able to complete their Librem 5 phone (https://puri.sm/products/librem-5/) we will now have a phone that runs Linux which makes it possible to run both computer and phone entirely Windows/Andorid/iOS free. In Sweden we'll still have a huge problem with BankID (and Swish but that is for another project) since we cannot run it on either our computer (without emulating Android) or phone anymore. We could really use a free implementation of Mobilt BankID and this seem like the best place to start asking.
I'm a developer but better on JavaScript/Go and Python than C/C++, good at understanding HTTP/TCP and how to use TLS/certificates but not the best on reverse engineering or cryptography (I suppose there are quite a lot of that?) in general. I would be willing to try to help out but I could not solve all on my own and I'm not sure where to start really either.
Any hints/documentation on how to get started on implementing the Mobilt BankID protocol? What would be needed to record and decrypt the messages that is sent from e.g. the Android app? Would it be extremely difficult? Any others interested in this?
