In theory Pluton enforcement platform-wide, which also includes forced SecureBoot without the ability to install user-signed keys, as well as OTA updates for that super-TPM, could block alt OSes on PC though.
Fortunately, Pluton never caught on and that hasn’t happened so far.
I’m gonna need an explanation how anything could prevent me from just formatting the drive and doing what I want, barring the use of proprietary hardware. I only understood SecureBoot in that paragraph.
Forced SecureBoot with only MS keys and no way to install user-signed keys and no Linux shim would block non-Windows OSes from booting.
Basically, Pluton functions similar to how mobile devices function in terms of locked bootloaders.
AFAIK the only devices currently produced which actually use Pluton are Surface devices though, and if it’s not being implemented as intended, it’s just seen as a generic TPM by other OSes.
In a few years If authoritarian shitholes keep fucking getting their way I can see using an “unverified/ untraceable OS” to be a “national security violation”
The hole they will never plug: Not using Windows.
In theory Pluton enforcement platform-wide, which also includes forced SecureBoot without the ability to install user-signed keys, as well as OTA updates for that super-TPM, could block alt OSes on PC though.
Fortunately, Pluton never caught on and that hasn’t happened so far.
I’m gonna need an explanation how anything could prevent me from just formatting the drive and doing what I want, barring the use of proprietary hardware. I only understood SecureBoot in that paragraph.
Forced SecureBoot with only MS keys and no way to install user-signed keys and no Linux shim would block non-Windows OSes from booting.
Basically, Pluton functions similar to how mobile devices function in terms of locked bootloaders.
AFAIK the only devices currently produced which actually use Pluton are Surface devices though, and if it’s not being implemented as intended, it’s just seen as a generic TPM by other OSes.
For anyone wondering what Pluton is: https://learn.microsoft.com/en-us/windows/security/hardware-security/pluton/microsoft-pluton-security-processor
Pluton as TPM: https://learn.microsoft.com/en-us/windows/security/hardware-security/pluton/pluton-as-tpm
In a few years If authoritarian shitholes keep fucking getting their way I can see using an “unverified/ untraceable OS” to be a “national security violation”
just give 'em time. it’s still a bit early in the game for that play