undefined | Better HN

0 pointsjudge20202y ago0 comments

You can still control the code running on your computer. But the websites you send http requests to don’t have to respond.

0 comments

grishka2y ago

You can't. On most modern systems there is software that runs with privileges above your OS kernel that you can't remove or modify because it is signed with the manufacturer's key. The key is part of a "trusted" boot chain. The root of trust is usually burned into the silicon in the fuses or the initial bootloader (boot ROM).

TEE on Android, for example. Intel ME on PCs, and probably TPMs also have a firmware of their own. Secure Enclave on Apple devices.

There's an outstandingly good perspective on the issue in another thread: https://news.ycombinator.com/item?id=36859465

judge2020OP2y ago

Even so, on most of the platforms you list you can disable the security checks and attestation mechanisms with a custom OS, which mitigates the risk of letting a site know that your computer is running any specific version of an OS with the proper anti-tamper checks. If you find a device that doesn’t, you can just not buy that device. At a certain point it’s not constructive to say “you can’t build that” when there is enough of a consumer benefit/desire and business incentive to do so.

grishka2y ago

The problem is not someone knowing something. The problem is that since 99% of people use their devices in stock configuration, "no attestation available" would be interpreted as "attestation not passed". We're already seeing that with banking apps on Android. It doesn't matter whether you've rooted your stock ROM or running something without Google services, the app will refuse to work either way.

1 more reply

JohnFen2y ago

But you can still get computers that have none of that stuff, or where it can be disabled.

bayindirh2y ago

Can you give me an example?

A computer without TPM, a "management engine", an Ethernet card with real Firmware in a real ROM, no platform controller, nothing.

...and a completely open BIOS w/o any binary blobs, and UEFI layer.

Almost a 486DX, almost.

1 more reply

j / k navigate · click thread line to collapse

0 comments

grishka2y ago

TEE on Android, for example. Intel ME on PCs, and probably TPMs also have a firmware of their own. Secure Enclave on Apple devices.

There's an outstandingly good perspective on the issue in another thread: https://news.ycombinator.com/item?id=36859465

judge2020OP2y ago

grishka2y ago

1 more reply

JohnFen2y ago

But you can still get computers that have none of that stuff, or where it can be disabled.

bayindirh2y ago

Can you give me an example?

A computer without TPM, a "management engine", an Ethernet card with real Firmware in a real ROM, no platform controller, nothing.

...and a completely open BIOS w/o any binary blobs, and UEFI layer.

Almost a 486DX, almost.

1 more reply

j / k navigate · click thread line to collapse