Comment by hsbauauvhabzb
15 days ago
If a surgeon does not have the expertise to perform a surgery, they probably shouldn’t cut into you.
If the company lacks the competency to write secure driers, they should outsource the work or have it validated externally.
These things could be solved by spending money. Stop excusing dangerous actions performed in the name of greed.
Exactly, which is why Microsoft should be writing the one writing the kernel code needed for ensuring integrity of games. Microsoft needs to develop ways to allow games to run in an isolated VM that is hardware protected from the main operating system and ensures strong hardware security so cheaters can not simply attach malicious devices to the PCI bus to DMA sensitive data.
> attach malicious devices to the PCI bus to DMA sensitive data
How do you do this in modern system with TPMs and IOMMU enabled?
Sadly not all Windows machines are able to use kernel DMA protection, so for those machines nothing will stop you.
1 reply →
You pretend to be a device with a driver not compatible with IOMMU
2 replies →
Flash custom firmware emulating some benign "donor card".
As an indie game developer, how do I get my game into this system and how do I debug it?
For this theoretical feature Windows would do it automatically for apps that would opt in.
For debugging you would either not have this feature or enabled, or you would build a custom build that included a debugger in the secure environment. If you needed to connect to production servers you could whitelist your account to be ignored by the anticheat since your server would know you are not playing with an official build.
4 replies →
It is not realistic to expect every game developer to invest a lot of money into security. It's like asking every apartment building to run its own fire department.
The responsibility of securing a platform should not fall on application developers anyway.
The problem is that general purpose computing platforms are not supposed to be secured against the user. That's a WONTFIX.
User ownership of their devices has been fixed on every platform except PCs.
3 replies →
Yes it is, and liability across the industry is already late.
By the way, in some countries apartment buildings need several licenses, including one from fire department, before been allowed to have people living on them.
It’s not the nurses job to perform surgery either, that’s why they don’t.
Microsoft could easily secure windows by blocking all rootkits/"kernel anti cheat". At this point that's probably the best option.
Games should never have kernel level access.
Games are a multi billion dollar industry that Microsoft has a stake in. A better option would be a ‘games mode’ and a ‘secure mode’.