| HN Mirror

Y	Hacker News new \| ask \| show \| jobs


	by raxxorrax 1679 days ago
	Secure boot could be a good feature, but it can be severely abused. Some people really put effort in it to make it more secure. But the usual problems of certificate logistics leads to the case the Microsoft basically owns secure boot. Only a matter of time before Netflix demands remote attestation.

4 comments

somehnguy 1678 days ago

>Only a matter of time before Netflix demands remote attestation.

Which is completely absurd. Within minutes of Netflix/anyone releasing anything new I can download it via Usenet or torrents. Nothing anyone does will change that reality. They just continue to make it more difficult for the average user to access content via player requirements for various DRM schemes. Which funny enough pushes people back to pirating to avoid all the nonsense.

It must be soul crushing to work on DRM for any industry as your job. Knowing that no matter what you do, how clever you are, etc - it doesn't matter at all, it'll be bypassed very shortly.

link

errantspark 1678 days ago

> It must be soul crushing to work on DRM for any industry as your job. Knowing that no matter what you do, how clever you are, etc - it doesn't matter at all, it'll be bypassed very shortly.

I can't imagine doing this, to be honest if I were asked to implement DRM I would quit, or try to make sure there are fundamental flaws in the scheme, it's the only moral thing to do if you're put in that situation imo.

EDIT: To those upvoting me, software as a service is usually DRM, so maybe hold your upvote if you're complicit.

link

mschuster91 1678 days ago

> Only a matter of time before Netflix demands remote attestation.

They already do on Android. Root your device and either play cat and mouse with Magisk and Universal SafetyNet fix, or get downgraded to L3. And even then, it's uncertain how long the USN hack will last, given that all it does is pretend the device doesn't have hardware attestation - once Google decides to mandate HA for all Android 12 and above devices (as all SoCs capable of running that should have some form of secure element), it's game over.

We need legislative action against anti-rooting measures and other shit that takes away control of devices from users, and that fast, but it doesn't look like it's high on the priority list for the next year of the Biden admin, and after that we will likely see, once again, a gridlocked Congress and in 2024 the Rise of the Sith again.

link

marcosdumay 1678 days ago

> Only a matter of time before Netflix demands remote attestation.

Well, as soon as they do that they become useless for me and I'll unsubscribe.

I don't know how many people are on the same boat, but between badly developed smart tvs and top boxes there are probably a large number.

link

jacquesm 1678 days ago

Bye, Netflix.

link