We need some externalised installable trust model to join EU and other identity proofs with an identity on the phone. Depending on google and Apple was a mistake. Depend on them to architect the secure zone api. But not the keying info.