> I think more like 5, although the government might start slowly, like only preventing non-TPM devices from accessing "sensitive" online services, e.g. banks or anything that requires a payment.
This has already happened for mobile banking apps on Android: Many of them already use SafetyNet with hardware attestation.
The only reason not all of them do require hardware attestation is that not all of the older Android phones support that, which is exactly the situation Microsoft wants to change for TPM.
And increasingly, other apps seem to be starting to use root detection and safety net for frivolous use cases such as McDonalds.
Sadly, it is true. I had it on my local bank app. It is annoying, but the future is for everyone to see. I am only able to vote with my feet and go to the branch in person.
I'm curious what you think we're losing here? I mean, I can't remote order with McDonalds on my vintage Windows 95 PC.
To me, the platforms are simply improving security and slowly jettisoning older systems which cause security issues. We don't allow TLS 1.1 for a reason.
This has already happened for mobile banking apps on Android: Many of them already use SafetyNet with hardware attestation. The only reason not all of them do require hardware attestation is that not all of the older Android phones support that, which is exactly the situation Microsoft wants to change for TPM. And increasingly, other apps seem to be starting to use root detection and safety net for frivolous use cases such as McDonalds.