←back to thread

The Dangers of Microsoft Pluton

(gabrielsieben.tech)
733 points gjsman-1000 | 2 comments | 26 Jul 22 03:46 UTC | HN request time: 0.778s | source
Show context
Gh0stRAT ◴[26 Jul 22 06:26 UTC] No.32235028[source]
I'm completely missing how his example of a Word document that can only be opened by approved users on approved hardware within the corporation is supposed to be a bad thing.

Honestly, that sounds pretty fantastic. I've been using 3rd party tools/extensions to do this sort of thing in corporate and government environments for years, but having the attestation go all the way down to the hardware level is a big value-add, especially with so much ransomware/spyware/extortion/espionage going on these days.

Can someone please explain to me how the author might see this level of security as a bad thing?

replies(18): >>32235120 #>>32235149 #>>32235164 #>>32235474 #>>32235546 #>>32235795 #>>32235875 #>>32236359 #>>32236639 #>>32236668 #>>32236673 #>>32236797 #>>32236864 #>>32237450 #>>32237580 #>>32238544 #>>32238583 #>>32240740 #
squiffsquiff ◴[26 Jul 22 06:47 UTC] No.32235164[source]
Sure it's fantastic in a corporate environment. Not so fantastic for personal devices. Basically this: https://youtu.be/XgFbqSYdNK4
replies(1): >>32235580 #
nine_k ◴[26 Jul 22 08:02 UTC] No.32235580[source]
Well, don't put that on a personal device.

It's like your company giving you serious protecting gear to wear while doing your work on a nuclear reactor is a good thing. But having to wear such gear at home is not a popular choice, and should not be required.

replies(1): >>32235778 #
palata ◴[26 Jul 22 08:34 UTC] No.32235778[source]
How do you choose what you put in your CPU? What when Windows forces you to have that kind of hardware?

You can choose not to wear that gear, but choosing to not use Windows is much more complicated, at least for most people.

replies(1): >>32236066 #
josephg ◴[26 Jul 22 09:24 UTC] No.32236066[source]
I imagine if the proponents of these systems had their way, they'd add remote attestation to websites too. Imagine your bank's website only loading on a "secure" windows environment, non-rooted android phone or an iphone.

Once these chips are in everyone's devices, it would be quite easy to add this stuff technically. And in doing so, break the web on non-approved hardware or software (like linux).

Edit: Actually on the subject of worst case scenarios: If the trusted computing attestation process was extended through the web browser, it would be possible to build a website which is impossible to scrape or interact with in any unapproved way, from any unapproved device. Eat your heart out Aaron Schwartz.

replies(1): >>32236166 #
nobody9999 ◴[26 Jul 22 09:40 UTC] No.32236166[source]
> imagine if the proponents of these systems had their way, they'd add remote attestation to websites too. Imagine your bank's website only loading on a "secure" windows environment, non-rooted android phone or an iphone.

Actually, IIUC this is already the case on Android[0].

Some (many? most?) banks/banking apps are rejecting (and/or complaining about) access from rooted phones right now.

I can't confirm this personally, as I'd rather have my tonsils extracted through my ears than use a surveillance device^W^W smart phone to do anything financially related.

Perhaps someone who uses banking apps on their surveillance device could chime in on that?

[0] https://www.howtogeek.com/241012/safetynet-explained-why-and...

replies(2): >>32236537 #>>32237180 #
vetinari ◴[26 Jul 22 12:09 UTC] No.32237180[source]
> I'd rather have my tonsils extracted through my ears than use a surveillance device^W^W smart phone to do anything financially related.

Well, it gets even better, even for folks with principles like you have.

If you want to use general computer, you need to log in. For logging in, you need second factor. That second factor is going to be in 99,99% cases exactly the app in the smartphone, that refuses to run on rooted devices.

So no avoidance, if you want access to your account.

replies(1): >>32237633 #
1. nobody9999 ◴[26 Jul 22 12:58 UTC] No.32237633[source]
>If you want to use general computer, you need to log in. For logging in, you need second factor.

The administrator of my network does not require multi-factor authentication for my logins.

That's probably because I am said administrator.

As for professional settings, if my employer wants me to use a surveillance device and/or an app on said device, they can provide that device to me.

As an alternative, I suppose I could use whatever subsidy is provided by my employer to purchase/use a separate device for such things.

If they choose not to do one of those thing, I guess I won't be logging in and will soon be working elsewhere.

Requiring me to use my personal equipment for work purposes is inappropriate IMHO, and I've yet to hear an argument (other than folks not wanting to carry multiple devices, which is a personal choice) that changes my mind about that.

I'd welcome anyone to make such an argument, mostly to discuss why it's inappropriate, but I'd certainly keep an open mind about it -- perhaps there's an angle(s) I haven't considered.

replies(1): >>32242925 #
2. vetinari ◴[26 Jul 22 19:39 UTC] No.32242925[source]
I meant access to your bank account -- in the context of the thread above --, not to computer account on your private or corporate computer.

At least in Europe, it is not even bank's initiative, it is from above them. They've got PSD2 directive to implement. And when they all have to implement it, is kind of difficult to vote with your wallet.