release_candidate on Nostr: IMO hardware-based attestation have more to do with vendor lock-in rather that ...
IMO hardware-based attestation have more to do with vendor lock-in rather that security.
In paper it's a good idea, actually. But in reality it does more to enforce vendor-approved software rather than protect the user in case the OS get compromised.
We should avoid to depend on hardware-based trust or attestation.
https://grapheneos.org/articles/attestation-compatibility-guide#apps-banning-grapheneos
#GrapheneOS #attestation #vendorLockIn #tpm #foss
In paper it's a good idea, actually. But in reality it does more to enforce vendor-approved software rather than protect the user in case the OS get compromised.
We should avoid to depend on hardware-based trust or attestation.
https://grapheneos.org/articles/attestation-compatibility-guide#apps-banning-grapheneos
#GrapheneOS #attestation #vendorLockIn #tpm #foss