Comment by Fischgericht

Comment by Fischgericht 5 days ago

7 replies

View on Hacker News

Yes, "just as secure as proprietary OSes" who due to failed signature verification are no longer able to start notepad.exe.

I think you might want to go re-read the last ~6 months of IT news in regards of "secure proprietary OSes".

charcircuit 5 days ago

Just because OpenSSL had a CVE posted about today, that didn't mean we should go back to use HTTP for the web.

Reply View 6 replies
  • lazide 5 days ago

    It does mean we should recognize that SSL is nice for some basic privacy/security, but not perfect security.

    Reply View 5 replies
    • charcircuit 5 days ago

      Same with remote attestation. Not all implementations are actually secure. But hopefully over time those security bugs can be ironed out and the cost to extract a key be made infeasable.

      Reply View 4 replies
      • direwolf20 5 days ago

        Hopefully not. What you have just said is a synonym for "But hopefully over time manufacturers will be able to completely prevent users from running unapproved software."

        Reply View 3 replies