← Back to context

Comment by palata

11 hours ago

Well the secure boot is about the OS itself. Of course... you have to trust the OS. Including all the firmwares that are embedded into it and make your hardware run.

I don't know if there is much value in arguments like "in theory that's great, but in practice I don't trust anyone other than X so anything that is not X is worse".

1 comment

palata

Reply
realusername  11 hours ago

> Well the secure boot is about the OS itself. Of course... you have to trust the OS.

So we're back to square one then, it's pointless because you can't trust mobile OS like you can with desktop OS.

Before talking about secure boot, Android needs a way to attest what's in the OS we're saying we are booting...

I'm not even sure Google themselves are fully aware of what's inside specific models.

> I don't know if there is much value in arguments like "in theory that's great, but in practice I don't trust anyone other than X so anything that is not X is worse".

I would rephrase it as why attesting that we have an unknown and outdated OS is valuable to the phone owner?