Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.sdf.org/users/kline/statuses/111868104880067901">kline 🏴󠁧󠁢󠁳󠁣󠁴󠁿 (kline@mastodon.sdf.org)'s status on Saturday, 03-Feb-2024 23:51:59 JST</a><a href="https://mastodon.sdf.org/@kline" title="kline@mastodon.sdf.org"><img src="https://gnusocial.jp/avatar/7360-48-20230126052934.webp" width="48" height="48" alt="kline 🏴󠁧󠁢󠁳󠁣󠁴󠁿" style="position: absolute; left: 0; top: 0;">kline 🏴󠁧󠁢󠁳󠁣󠁴󠁿</a><div><a href="https://mastodon.sdf.org/@kline/111868096248301539" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/34002" title="ubergeek@tilde.zone">Ubergeek</a></li></ul></div></section><article><p><a href="https://is.badat.dev/users/Mae">@Mae</a> <a href="https://tilde.zone/@ubergeek">@ubergeek</a> the TPM specifically has a further major issue: that of being non-free hardware (and associated firmware). But instead of throwing away the good bits, we should instead drive at making it free - a RISCV TPM with free firmware? This is would be an amazing outcome.<br>TPMs are good concepts - secure enclaves that are less attackable. Even if you need to comply or even give your laptop/hdd over, attackers will never be able to extract your privkey from it, and that's a good thing.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2671999#notice-5295702">In conversation</a><time datetime="2024-02-03T23:51:59+09:00" title="Saturday, 03-Feb-2024 23:51:59 JST">about 10 months ago</time> <span>from <span><a href="https://mastodon.sdf.org/@kline/111868104880067901" rel="external" title="Sent from mastodon.sdf.org via ActivityPub">mastodon.sdf.org</a></span></span><a href="https://mastodon.sdf.org/@kline/111868104880067901">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
kline 🏴󠁧󠁢󠁳󠁣󠁴󠁿 (kline@mastodon.sdf.org)'s status on Saturday, 03-Feb-2024 23:51:59 JSTkline 🏴󠁧󠁢󠁳󠁣󠁴󠁿
in reply to
- [74][166]
- Ubergeek
@Mae @ubergeek the TPM specifically has a further major issue: that of being non-free hardware (and associated firmware). But instead of throwing away the good bits, we should instead drive at making it free - a RISCV TPM with free firmware? This is would be an amazing outcome.
TPMs are good concepts - secure enclaves that are less attackable. Even if you need to comply or even give your laptop/hdd over, attackers will never be able to extract your privkey from it, and that's a good thing.
In conversationabout 10 months ago from mastodon.sdf.orgpermalink

Public

Embed Notice

HTML Code

Corresponding Notice