The Dangers of Microsoft Pluton

(gabrielsieben.tech)

733 points gjsman-1000 | 1 comments | 26 Jul 22 03:46 UTC | HN request time: 0.204s | source

Show context

userbinator ◴[26 Jul 22 05:05 UTC] No.32234457[source]▶

What is to prevent school WiFi from one day requiring a Pluton assertion that your Windows PC hasn’t been tampered with before you can join the network?

Remote attestation is the true enemy of your freedom. The power of the authoritarian corporatocracy to force you to use only the (entire) systems they control. It's worth reading https://www.gnu.org/philosophy/right-to-read.en.html again just to see how prescient Stallman was.

replies(12): >>32234704 #>>32235241 #>>32236203 #>>32236379 #>>32236408 #>>32237069 #>>32237245 #>>32238451 #>>32239672 #>>32239680 #>>32239999 #>>32240046 #

raxxorraxor ◴[26 Jul 22 09:44 UTC] No.32236203[source]▶

>>32234457 #

Same with TPM and why it had so many critics. Some people still seem adamant to say that boot viruses are the greatest threat in the 21st century, but the economic interest are far more dangerous for general computing in my opinion. And it isn't even close.

replies(4): >>32236517 #>>32236614 #>>32236934 #>>32238101 #

ChuckNorris89 ◴[26 Jul 22 10:53 UTC] No.32236614[source]▶

>>32236203 #

Can you explain what is the issue with TPM?

I get the issue with Pluton but TPM is only a dedicated and certified secure key and random number generator that does a better job than CPUs doing it in software, and it's also a secure enclave for storing your encryption keys. Would you rather store the keys in memory where they can be easily grabbed by malicious apps like Mimikatz? Macs had the same feature for years in the T2 chip.

It's the exact system that enables wireless payment and other strong security features on your phone.

So having TPM on PCs and using it for its interested purpose is a boon for everyone's security so I don't see the issue, just FUD.

replies(3): >>32236697 #>>32236700 #>>32237793 #

throwaway48292 ◴[26 Jul 22 11:04 UTC] No.32236700[source]▶

>>32236614 #

TPM is part of the system that means I can't my phone for wireless payment or use all sorts of other apps if I also want to do something outlandish like record phone calls, change the theme or delete Facebook... and everything it achieves can be done by other means anyway, making the device's owner a 2nd class citizen is a lazy solution.

replies(1): >>32236772 #

1. aibrahem ◴[26 Jul 22 11:14 UTC] No.32236772[source]▶

>>32236700 #

I've always heard this argument but never understood it, what other ways are available to have a SRTM?

↑