[stalfosknight]

So at best we have cynicism / paranoia regarding Apple's T2.

[anonym29]

By a 'zero trust' security philosophy, anything short of completely open source is inherently untrustable.

You may not be practicing that philosophy, but that doesn't make those who do "paranoid" any more than corporations implementing PCI-DSS controls.

Security does not work retroactively, only proactively.

[jeffbee]

That's all anyone has against IME, also. And BridgeOS isn't any more secure. There are tons of known flaws in it.

[stalfosknight]

Part of it runs bridgeOS. The Secure Enclave runs something else altogether called sepOS.

https://support.apple.com/guide/security/secure-enclave-sec5...