zlacker

[parent] [thread] 2 comments
1. grishk+(OP)[view] [source] 2023-07-25 15:54:31
Doesn't every TPM use a unique key to prevent this exact thing happening? If you do rip the key off of it and publish it, they'd just blacklist that particular key as "compromised".
replies(2): >>alex77+ka >>strbea+3c
2. alex77+ka[view] [source] 2023-07-25 16:26:18
>>grishk+(OP)
I guess. But if the key stays private it could power a scraper or a proxy.

Just wondering just how expensive it really is to rip the key out (or to have access to the tools to do it)

3. strbea+3c[view] [source] 2023-07-25 16:31:06
>>grishk+(OP)
Rip the key off the cheapest android phone you can buy, or an old one after you've upgraded. Don't publish it - pass it to your rooted phone which can now use an emulated TPM.
[go to top]