Hacker News new | ask | show | jobs
by rocqua 1817 days ago
TPM used for secure boot, (hypothetically) used to block installing non-windows OS, means the owner is forced to using an OS that has telemetry.

That is the argument I suppose OP was making. The secure boot locking is hypothetical, but it is often feared. I get why, because it seems like something Microsoft would love to do.
1 comments
my123 1817 days ago
TPM is used for measured boot, to not release a secret/operate on a key if measurements do not match.

It doesn't block you from running anything.

link
rocqua 1817 days ago
Dang your right.

I figured the TPM was part of secure-boot validation. But given some extra thought, it is clear that verifying a signature does not require any secrets.

link
layoutIfNeeded 1817 days ago
>It doesn't block you from running anything.

Yet

link