But I want" secure boot. It makes me* safer.

For the same reason I relock bootloader after flashing alternative Android flavour on my phone.

You didn't write the code for the bios, nor could you.

There's always a degree to which the manufacturer has to.

What about Coreboot/Libreboot?

https://www.coreboot.org/

https://libreboot.org/

Even with Coreboot on anything vaguely modern, there is a 'Management Engine' or 'Platform Security Processor' you can't practically control. On the better understood Intel versions, this is running a full MINIX 3 operating system and controls the network card in ways the BIOS and operating system root cannot monitor. It runs a significant amount of code; with hardware obfuscation that has not yet been broken.

You are right of course, but I consider that a hardware concern, not BIOS.

Sorry, no banking for you then.

No traditional banking at your parts? Actually I am informed those at your site can provide more services (more open) than the banks I have around now.

But here, no, only some bad players require a smartphone and an account to OS providers to make the bank account work.

I'm holding on to my rolling token generator like it is made of gold, they won't give me another one and force me to use their app. But the app requires a non-rooted phone or it will refuse to function. I've already asked them to give me a free phone just like they gave me a free token generator. So far no dice. Oh, and better still, for large transactions you are not allowed to use the phone app.

> I've already asked them to give me a free phone just like they gave me a free token generator

It's not a matter of free, it's a matter of "certified": they make you use third party devices, but if anything happens they may make it your fault on the legal side. If a device is part of the banking agreement, the device must come from the bank and the responsibility must rely entirely on the bank.

> app

In all of this: how can it be remotely possible to think that in order to get a critical service - accessing your money - one could be supposed to have a contract with some remote alien party (the "App Store")? Because I am guessing your bank does not directly give you the "app". Already this makes me wonder about how the population can be blind to unbelievable levels to the systemic insanity.

Some of them do not require any smartphone - but some of them require that you make a contract with an uncontrolled firm on a different continent to have a money deposit account. And the amount of people who will go "are you mental?!" in front of them are presumably (evidently) negligible.

Good question, I am not able to answer it though. But you are right, it makes no sense at all.

Pretty sure this would boost fintech/blockchain apps even more vs. using banks directly, if it ever happened.

Even now, I don't really use a bank app for 90% of my needs.