Comment by elsjaako

I don't know about how secure enclaves work, so this may be a solution I'm not aware of. Thank you for explaining!

So I guess the whole game software, or at least a significant part, is loaded encrypted and runs encrypted. It's on the users hardware but the user can't access it.

The only thing I can think of: You say the game payload is encrypted using the public key of a secure enclave. This means the open source game launcher has to pass the public key to the server doing the encryption. Could you not supply a fake public key that goes to a virtual secure enclave? I guess the public key could be signed by intel or something, is that something that happens on current TPMs?

Would it even be possible to do this if the program had to run under Proton/Wine? The original subject here is the launcher running on Linux.

I do wander about the use of an open source launcher at this point though. As someone who prefers open source software, the idea of encrypted software running on my PC makes me uncomfortable, more than just closed source software.