Tweet
What is the point running something like Coreboot but then adding all the obscure black-box "security" (spyware/digital restriction management) and on top MS-Windows 11?
-
Stop TCPA, stupid software patents and corrupt politicians! -
From https://semiaccurate.com/2021/12/01/...ous-to-deploy/Originally posted by Jannik2099 View Post
"Pluton is touted as being able to recover a non-booting machine so if the OS isn’t active and Pluton can fix it, that means someone isn’t telling the truth"
I read that as it has the ability to do anything. So full remote access...Comment
-
I have followed the link to the microsoft article, but that only states "provide the ability to recover from software bugs" - we'd have to see a concrete implementation to categorize this, I think.Originally posted by grigi View Post
The updates are deployed as regular UEFI capsules just like lvfs updates, btw
EDIT: the "recover from software bugs" part seems to be referring to this https://www.youtube.com/watch?v=quLa6kzzra0&t=2162s
It is poorly formulated and meant "discover software bugs in firmware, because that would change the attestation checksums"
Ergo, no remote access from what I can tell?Last edited by Jannik2099; 19 January 2022, 09:30 AM.Comment
-
The point that Charlie made is that when asking directly, he gets conflicting information, or more often complete silence. Therefore there is a good chance that there is active effort to downplay its capabilities.
Just note, that he was talking about the risks of Intel ME for years before Intel acknowledged it. If he's concerned, we all should pay attention. (I'm not saying he is right, just that he is noticing "smoke")Comment
-
If someone can mod your firmware, bootloader, etc from software, they can take your data, making TPM have no benefit over old school disk encryption.Originally posted by Jannik2099 View Post
If someone can mod your hardware, they can add a key logger, usb rootkit, their own boot key (because who checks anyway), etc that are not auditable by a TPM making the TPM pointless (IMO).
Sure a TPM can be used to make one form of attack hard but it fails to address any full class of attack making it more trouble than the security problems it adds.
Maybe I'll like TPMs when they are open hardware and have broader reach but for now I bundle them with IME, AMD-PSP, speculative execution, rowhammer, and select other hardware IP that just runes an otherwise good SOC.
Last edited by elatllat; 19 January 2022, 10:41 AM.Comment
-
Input peripherals are indeed a problem, but there are computers that come without them (i.e. servers) and that'd be safe against this. Secureboot keys are checked by the TPM tooOriginally posted by elatllat View PostComment
-
Originally posted by Jabberwocky View Post
Yes, irrelevant to TPM. But relevant for the question, "how else would someone lose their data?"Comment
Comment