TPMs can be emulated. Also basically every hardware platform can be placed into ... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

px43 on July 26, 2023 | parent | context | favorite | on: Google’s nightmare “Web Integrity API” wants a DRM...

TPMs can be emulated. Also basically every hardware platform can be placed into a hardware debug mode that allows live debugging of the underlying operating system. Keys can also be extracted from hardware. If even one supported platform leaks a key (and in this doomer fantasy world all platforms must be supported right?) then the attestations can be bypassed. It only needs to be bypassed once to be bypassed everywhere, basically forever.

AlotOfReading on July 26, 2023 [–]

Key revocation is a thing and no, not all platforms must be supported (or are intended to be supported). Here's the relevant Google blog post:

https://android-developers.googleblog.com/2019/09/trust-but-...

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact