rene_mobile’s avatarrene_mobile’s Twitter Archive—№ 8,074

      1. I'd like to add that this goes both ways. Key attestation not only lets server operators know what environment their apps run on, but can also let users know what components are actually running on their physical device and that they haven't been tampered with. 1/ @topjohnwu/1445705913508134920
    1. …in reply to @rene_mobile
      One specific example is the @GrapheneOS Auditor app: attestation.app/about (with a growing list of supported devices and support for custom firmware attestation). Trusted computing components also make users safer against tampering with the OS. 2/
  1. …in reply to @rene_mobile
    @GrapheneOS While the full chain is not implemented yet, we aim to make that as transparent as possible, to the point of adding Insider Attack Resistance to all the relevant components (see usenix.org/conference/enigma2019/presentation/mayrhofer for some parts).