|
|
|
|
|
|
by jrockway
1052 days ago
|
|
|
I mean, your complaints are that it doesn't make software more secure. That's true but that's an orthogonal effort. Imagine there was a world where software was secure (they rewrote Windows in Rust or whatever); now what tools do you need to ensure that someone didn't replace your secure software with their own compromised version? (For example, how do you know that LUKS is asking for your full-disk decryption key, and not some piece of malware that some random package maintainer added to /etc/systemd?) That's the gap that the TPM is designed to fill. Meanwhile, sure, it's not going to prevent you from clicking a link in your email to fakebank.com and typing in your SSN. I'm surprised that people are surprised that a $0.20 chip doesn't eliminate software bugs. |
|
|