-
I'd like to add that this goes both ways. Key attestation not only lets server operators know what environment their apps run on, but can also let users know what components are actually running on their physical device and that they haven't been tampered with. 1/ @topjohnwu/1445705913508134920Permalink On twitter.com
❤️ 9 Favorites Mood +2 🙂
-
One specific example is the @GrapheneOS Auditor app: attestation.app/about (with a growing list of supported devices and support for custom firmware attestation). Trusted computing components also make users safer against tampering with the OS. 2/Permalink On twitter.com
-
@GrapheneOS While the full chain is not implemented yet, we aim to make that as transparent as possible, to the point of adding Insider Attack Resistance to all the relevant components (see usenix.org/conference/enigma2019/presentation/mayrhofer for some parts).On twitter.com