Autor: Dr. Nikolaus Klepp Datum: To: dng Betreff: Re: [Dng] TPM
Am Dienstag, 23. Dezember 2014 schrieb John Morris: > On Mon, 2014-12-22 at 17:23 -0600, T.J. Duchene wrote:
>
> > What can it do in the right? Nothing that can't be done without the TPM
> > chip. One of the first things that you learn in computer engineering is
> > that anything problem can be solved on software or hardware. The only
> > difference is a question of efficiency.
>
> Keep to the fundamentals. TPM is all about trust. So long as I'm using
> it to enhance my trust that the machines under my control are actually
> under my control I deem it a good thing. If it is to be used to let
> somebody ELSE trust my machines in ways I can't control I'm probably not
> going to put up with it and disable the chip. Just that simple, just
> look at who is trusting who and the question of whether it is good
> clears up instantly.
>
> And yes, putting the thing in hardware does enhance security in ways
> software alone simply can't.
>
… and if you believe that, I have a bridge to sell you.
Nik
--
Please do not email me anything that you are not comfortable also sharing with the NSA.