Hacker News new | past | comments | ask | show | jobs | submit login

Signatures all the way down :( And reliable methods to verify those signatures without MITM attacks.



Yay someone agrees TPM's can be a good thing!

Right?


Some people do; mjg59 is working on boot attestation as an anti-boot-sector-virus mechanism. The underlying absolutely critical question is who controls the TPM hardware.


I absolutely feel that way personally, I just get frustrated by the common response from people on HN etc. TPM's are the most secure / most mature way to verify your software integrity.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: