[mjg59]

Pluton can securely track what software was booted on the main core as long as the previous component in the boot chain participates. If your OS doesn't participate, you don't get any measurements beyond that point. And that means there's no way for Pluton to block execution.

[Dylan16807]

At which point the server will refuse to send you the protected portion of the software, or the decryption key for it. This blocks the execution.