←back to thread

The Dangers of Microsoft Pluton

(gabrielsieben.tech)
733 points gjsman-1000 | 3 comments | 26 Jul 22 03:46 UTC | HN request time: 0.817s | source
Show context
Gh0stRAT ◴[26 Jul 22 06:26 UTC] No.32235028[source]
I'm completely missing how his example of a Word document that can only be opened by approved users on approved hardware within the corporation is supposed to be a bad thing.

Honestly, that sounds pretty fantastic. I've been using 3rd party tools/extensions to do this sort of thing in corporate and government environments for years, but having the attestation go all the way down to the hardware level is a big value-add, especially with so much ransomware/spyware/extortion/espionage going on these days.

Can someone please explain to me how the author might see this level of security as a bad thing?

replies(18): >>32235120 #>>32235149 #>>32235164 #>>32235474 #>>32235546 #>>32235795 #>>32235875 #>>32236359 #>>32236639 #>>32236668 #>>32236673 #>>32236797 #>>32236864 #>>32237450 #>>32237580 #>>32238544 #>>32238583 #>>32240740 #
BiteCode_dev ◴[26 Jul 22 06:45 UTC] No.32235149[source]
The capacity for abuse is huge, way beyong the potential benefits.

From the USA, we get news of banned book in some states. When I read that, my head goes back to my european history, and I reach the Godwin point very quickly.

Those kind of people will abuse such system to prevent things to be shared.

It will be used for putting DRM on everything and create a more and more closed web.

It will be used by corporations and govs to prevent wisthleblowers and journalists to do their job. Or to prevent employees to get evidences of mistreatments in case they need to sue.

Because if you look at it, it's basically just a system for information control. And bad actors love that.

And of course it will be "for security reasons".

Trusting people with a terrible track record to not abuse a massive power in the future, espacially one that can be scaled up with the push of a button once the infrastructure is in place, is not a good bet.

replies(5): >>32235233 #>>32235313 #>>32235723 #>>32236892 #>>32238508 #
resfirestar ◴[26 Jul 22 14:11 UTC] No.32238508[source]
If you want to use the OS to ban a book or program or whatever, you don't need fancy hardware features, just a database of hashes pushed down via a software update. Apple wanted to do a version of this for CSAM images, it only didn't happen because they chose to tell users about it and got massive backlash. The implication that governments need more powerful DRM features to do something similar just obscures the fact that they could do it tomorrow if the US government gave up their free speech stances.
replies(3): >>32239515 #>>32240188 #>>32240970 #
reedjosh ◴[26 Jul 22 16:11 UTC] No.32240188[source]
But at least you could load your own OS.

Chip manufacturers could even decide that nothing good happens on open source operating systems, so you're now only allowed to run Mac or Windows operating systems.

The point is really that they're taking full ownership of the chips from you.

replies(1): >>32240338 #
1. resfirestar ◴[26 Jul 22 16:22 UTC] No.32240338[source]
They could, but not with the new Pluton stuff. That would be enforced with secure boot, which has been around for a while already. Again, the capabilities already exist. The barrier for a would-be censor is political not technological.
replies(1): >>32243837 #
2. oehpr ◴[26 Jul 22 20:51 UTC] No.32243837[source]
Ah right, the robust guardian of our human freedoms! Politics!

I want my technological barrier back please.

replies(1): >>32244871 #
3. salawat ◴[26 Jul 22 22:25 UTC] No.32244871[source]
This. We never should have built these things.