zlacker

[parent] [thread] 1 comments
1. allisd+(OP)[view] [source] 2023-07-26 15:34:10
What part of attestation don't you understand? If linked with a OS level signing with keys stored on TPM, it's game over for private browsing. The only thing worse than companies proposing such measures are the useful idiots downplaying the impact. If someone disagrees, pray tell us muddle brains how to bypass this on a proprietary OS with locked boot and tpm stored keys.
replies(1): >>protoc+Gs9
2. protoc+Gs9[view] [source] 2023-07-29 01:30:25
>>allisd+(OP)
>If linked with a OS level signing with keys stored on TPM

Is that listed in the article anywhere? Is that part of the proposal?

The proposal does however say that even if the attestation fails, that the user should be allowed to access the website.

Are you upset with the proposal, or some other proposal that you are imagining?

[go to top]