A more detailed writeup of how the FSF is not only wrong about TPMs being involved in hardware-based DRM, they missed the actual user-hostile hardware DRM implementation: https://mjg59.dreamwidth.org/70954.html
Conversation
Notices
-
Embed this notice
Matthew Garrett (mjg59@nondeterministic.computer)'s status on Thursday, 02-Jan-2025 10:22:41 JST 
Matthew Garrett
-
Embed this notice
alcinnz (alcinnz@floss.social)'s status on Thursday, 02-Jan-2025 10:25:14 JST 
alcinnz
@mjg59 You know, this misinfo aside I wasn't keen on FSF recommending Linux-evangalism for IDAD...
Sure they are the ones who run the day, but I get the strong impression that Linux-evangalism backfires!
I wonder if there's someone else scheduling such a day...
-
Embed this notice
cesarb (cesarb@mastodon.social)'s status on Thursday, 02-Jan-2025 16:38:32 JST 
cesarb
@tthbaltazar @mjg59 It's not trivial to sniff if you use a fTPM or similar, since then it's buried deep inside the CPU itself. But yes, physical access can still be a risk, since the attacker could for instance sniff the memory bus; but that's a more complex attack than "plug a USB stick and boot from it" or even "sniff the low speed LPC bus".
(Some computers have "intrusion switches" to sense when the case is opened, but I don't think they set any flag the TPM can use as a sign to stop.)
-
Embed this notice
David Chisnall (*Now with 50% more sarcasm!*) (david_chisnall@infosec.exchange)'s status on Thursday, 02-Jan-2025 16:38:32 JST 
David Chisnall (*Now with 50% more sarcasm!*)
@cesarb @tthbaltazar @mjg59 Don’t confuse on-package TPMs and fTPMs. A lot of fTPMs (which run on the main core in a privileged mode) are often vulnerable to side channels. Several of the recent transient execution attacks could leak fTPM secrets. I think most of these were patched by doing some aggressive state flushing on TPM events, but people keep finding new side channels. On-package TPMs, where the TPM is a separate component either in the same package or on the same die are typically not vulnerable to these attacks. On the MS Surface laptops, there’s a Pluton subsystem on die, which runs the TPM stack. Pluton is one of the few Microsoft security products I have a lot of faith in (I worked with that team, they’re great): it stood up to over a decade of attacks from people with physical access and a strong financial incentive to break it.
feld likes this. -
Embed this notice
cesarb (cesarb@mastodon.social)'s status on Thursday, 02-Jan-2025 16:38:34 JST
cesarb
@tthbaltazar @mjg59 One common use of a TPM is to have a full-disk-encrypted partition which is automatically decrypted as long as the full both path (firmware, bootloader, kernel, initrd, kernel command line, etc) is unchanged. Try to access it any other way (single user mode, booting from a USB stick, etc) and it won't automatically decrypt (you'd have to use alternate means, like a recovery passphrase).
-
Embed this notice
Tóth Gábor Baltazár (tthbaltazar@chaos.social)'s status on Thursday, 02-Jan-2025 16:38:34 JST 
Tóth Gábor Baltazár
@cesarb @mjg59
this is something that I want, but it has major flaws if someone can physically access the machine and is prepared to hack thisit's trivial to sniff the bus between the tpm and the rest of the system
-
Embed this notice
Tóth Gábor Baltazár (tthbaltazar@chaos.social)'s status on Thursday, 02-Jan-2025 16:38:35 JST
Tóth Gábor Baltazár
@mjg59
as a user who wants security, I still have no idea what I can use the TPM for -
Embed this notice
翠星石 (suiseiseki@freesoftwareextremist.com)'s status on Thursday, 02-Jan-2025 16:48:09 JST 
翠星石
@mjg59 TPMs are not about security - it is about restricting the user.
Ironically, past TPMs have only been useful to detect if the bootup software has been modified.
The proprietary masters are giving TPMs another go and of course they will implement streaming handcuffs with it eventually.
The FSF has posted against streaming degeneracy many times; https://www.fsf.org/blogs/community/cancel-netflix-if-you-value-freedom
-
Embed this notice
All GNU social JP content and data are available under the