Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Hardware key storage is a low level security primitive. Both Android and iOS have mandated it for far longer. It's a low level security primitive that enables a lot of scenarios, not just DRM.

For example - it's not possible to protect SSH keys from malware that achieves root without hardware storage. Only hardware storage can offer the "Unplug It" guarantee - that unplugging a compromised machine ends the compromise.





9front with factotum tells a different story.

reply


If you want to protect keys you get a yubikey or something like that.

reply


And if you want to play sound, you buy a sound card. Computers integrate components that approximately everybody needs. Hardware storage for keys is just the latest example

reply


The main component of a yubikey is that it requires a human presence to hit the button and access the secret.

Do new computers have such a button? I've failed to locate it.

reply


Ah yes Android and iOS, they have truly become bastions of user freedom since mandating secure enclaves. That really puts my worries to rest. /s

reply


User freedom is not the only axis by which we judge operating systems.

reply


It is not, but to me personally it is a very important one and it is not one I will give up without a fight.

reply




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: