Comment by bayindirh

Comment by bayindirh 5 days ago

7 replies

View on Hacker News

It's probably built on systemd's Secure Boot + immutability support.

As said above, it's about who controls the keys. It's either building your own castle or having to live with the Ultimate TiVo.

We'll see.

direwolf20 5 days ago

We all know who controls the keys. It's the first party who puts their hands on the device.

Reply View 2 replies
  • curt15 5 days ago

    And once you remove the friction for requiring cryptographic verification of each component, all it takes is one well-resourced lobby to pass a law either banning user-controlled signing keys outright or relegating them to second-class status. All governments share broadly similar tendencies; the EU and UK govts have always coveted central control over user devices.

    Reply View 0 replies
  • bayindirh 5 days ago

    Doesn't have to be. While I'm not a fan of systemd (my comment history is there), I want to start from a neutral PoV, and see what it does.

    I have my reservations, ideas, and what it's supposed to do, but this is not a place to make speculations and to break spirits.

    I'll put my criticism out politely when it's time.

    Reply View 0 replies
zb3 5 days ago

Just to make it clear - on Android you don't have the keys. Even with avb_custom_key you can't modify many partitions.

Reply View 2 replies
  • bayindirh 5 days ago

    None of the consumer mobile devices give you all the keys. There are many reasons for that, but 99.9% of them are monetary reasons.

    Reply View 1 reply
    • zb3 5 days ago

      But I want to buy that kind of device for money and I can't.. something is wrong with the market, looks like collusion..

      Reply View 0 replies
egorfine 4 days ago

> who controls the keys

Not you. This technology is not being built for you.

Reply View 0 replies