zlacker

[parent] [thread] 1 comments
1. csomar+(OP)[view] [source] 2022-07-30 00:40:38
> Wouldn't you prefer that this data only be able to be decrypted by a computer that can prove to the world it booted a clean OS image with all the latest security patches installed?

Yeah, because transferring that data into another machine is an impossible task.

That's the stupidest argument I heard today...

replies(1): >>fleven+93
2. fleven+93[view] [source] 2022-07-30 01:15:40
>>csomar+(OP)
Admittedly it is a simplified scenario for the sake of argument. You'd need to have a full attestation of everything that controls access to the data (including ACLs) to get much of a guarantee.

But in a future world it's not hard to imagine the vendor software running in some sort of SGX-like environment that is very difficult to manually extract the data from.

[go to top]