Comment by will4274
3 days ago
Hardware key storage is a low level security primitive. Both Android and iOS have mandated it for far longer. It's a low level security primitive that enables a lot of scenarios, not just DRM.
For example - it's not possible to protect SSH keys from malware that achieves root without hardware storage. Only hardware storage can offer the "Unplug It" guarantee - that unplugging a compromised machine ends the compromise.
9front with factotum tells a different story.
If you want to protect keys you get a yubikey or something like that.
And if you want to play sound, you buy a sound card. Computers integrate components that approximately everybody needs. Hardware storage for keys is just the latest example
The main component of a yubikey is that it requires a human presence to hit the button and access the secret.
Do new computers have such a button? I've failed to locate it.
Ah yes Android and iOS, they have truly become bastions of user freedom since mandating secure enclaves. That really puts my worries to rest. /s
User freedom is not the only axis by which we judge operating systems.
It is not, but to me personally it is a very important one and it is not one I will give up without a fight.
1 reply →