←back to thread

The Dangers of Microsoft Pluton

(gabrielsieben.tech)
733 points gjsman-1000 | 10 comments | 26 Jul 22 03:46 UTC | HN request time: 0.97s | source | bottom
Show context
Gh0stRAT ◴[26 Jul 22 06:26 UTC] No.32235028[source]
I'm completely missing how his example of a Word document that can only be opened by approved users on approved hardware within the corporation is supposed to be a bad thing.

Honestly, that sounds pretty fantastic. I've been using 3rd party tools/extensions to do this sort of thing in corporate and government environments for years, but having the attestation go all the way down to the hardware level is a big value-add, especially with so much ransomware/spyware/extortion/espionage going on these days.

Can someone please explain to me how the author might see this level of security as a bad thing?

replies(18): >>32235120 #>>32235149 #>>32235164 #>>32235474 #>>32235546 #>>32235795 #>>32235875 #>>32236359 #>>32236639 #>>32236668 #>>32236673 #>>32236797 #>>32236864 #>>32237450 #>>32237580 #>>32238544 #>>32238583 #>>32240740 #
BiteCode_dev ◴[26 Jul 22 06:45 UTC] No.32235149[source]
The capacity for abuse is huge, way beyong the potential benefits.

From the USA, we get news of banned book in some states. When I read that, my head goes back to my european history, and I reach the Godwin point very quickly.

Those kind of people will abuse such system to prevent things to be shared.

It will be used for putting DRM on everything and create a more and more closed web.

It will be used by corporations and govs to prevent wisthleblowers and journalists to do their job. Or to prevent employees to get evidences of mistreatments in case they need to sue.

Because if you look at it, it's basically just a system for information control. And bad actors love that.

And of course it will be "for security reasons".

Trusting people with a terrible track record to not abuse a massive power in the future, espacially one that can be scaled up with the push of a button once the infrastructure is in place, is not a good bet.

replies(5): >>32235233 #>>32235313 #>>32235723 #>>32236892 #>>32238508 #
1. resfirestar ◴[26 Jul 22 14:11 UTC] No.32238508[source]
If you want to use the OS to ban a book or program or whatever, you don't need fancy hardware features, just a database of hashes pushed down via a software update. Apple wanted to do a version of this for CSAM images, it only didn't happen because they chose to tell users about it and got massive backlash. The implication that governments need more powerful DRM features to do something similar just obscures the fact that they could do it tomorrow if the US government gave up their free speech stances.
replies(3): >>32239515 #>>32240188 #>>32240970 #
2. raxxorraxor ◴[26 Jul 22 15:15 UTC] No.32239515[source]
The EU just mandated chats to be scanned for content. Of course just for CSAM just as the meta data collection is only used for terrorism. Problem is that the latter is also used for parking tickets. They really try to hit the definition of a totalitarian state by the letter.
replies(2): >>32239824 #>>32240433 #
3. resfirestar ◴[26 Jul 22 15:41 UTC] No.32239824[source]
Wider E2EE adoption was the only hope for clawing back some privacy for users who do everything on cloud services. If the EU bans E2EE and starts mandating all kinds of scanning of data stored on third party servers, it would be a massive loss.
4. reedjosh ◴[26 Jul 22 16:11 UTC] No.32240188[source]
But at least you could load your own OS.

Chip manufacturers could even decide that nothing good happens on open source operating systems, so you're now only allowed to run Mac or Windows operating systems.

The point is really that they're taking full ownership of the chips from you.

replies(1): >>32240338 #
5. resfirestar ◴[26 Jul 22 16:22 UTC] No.32240338[source]
They could, but not with the new Pluton stuff. That would be enforced with secure boot, which has been around for a while already. Again, the capabilities already exist. The barrier for a would-be censor is political not technological.
replies(1): >>32243837 #
6. fariszr ◴[26 Jul 22 16:29 UTC] No.32240433[source]
The law has yet to be passed. And its facing immense backlash, even from governments like Germany.
replies(1): >>32249569 #
7. slaymaker1907 ◴[26 Jul 22 17:08 UTC] No.32240970[source]
I think it may have also been problematic legally for Apple. The US laws for CSAM are very strict and Apple wanted to do some sort of confirmation that the images are indeed CSAM which would have meant moving the images from the device to Apple servers.
8. oehpr ◴[26 Jul 22 20:51 UTC] No.32243837{3}[source]
Ah right, the robust guardian of our human freedoms! Politics!

I want my technological barrier back please.

replies(1): >>32244871 #
9. salawat ◴[26 Jul 22 22:25 UTC] No.32244871{4}[source]
This. We never should have built these things.
10. raxxorraxor ◴[27 Jul 22 12:19 UTC] No.32249569{3}[source]
I doubt backlash will do anything. Regardless, the EU also mass collected personal data and made this behavior legal retroactively for authorities like Europol. The course for ever increasing surveillance has long been chosen. Government often disavows such decisions but that is exactly their strategy to implement such laws while evading criticism themselves.