Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> I fully suspect that some anti-cheat providers will simply prevent access to the game if you use one of those.

How would they be able to detect that the TPM is discrete?



As the article says, every TPM has its own signature and public key from the manufacturer, making it fairly easy to say if it isn’t Intel and it isn’t AMD, it’s discrete.


But the article also says you can replace that public key, also they are from the motherboard, not CPU manufacturer.

I think it's going to be yet another failure like Nintendo and Sony have been struggling with for decades.

If you start requiring things, people will take out their soldering iron.

And this time they are trying to brick hardware we built ourselves, if you are still using a discrete header TPM your computer is from 2016, and then odds are you built it yourself!


Nonsense - Nintendo’s OS, according to reverse engineers, is currently bulletproof. The contributor who rewrote the entire kernel, and secure monitor, as open source said they have “zero bugs”… in 2020. The problem was NVIDIA’s boot code and inability to detect glitching; but the OS design was impeccable.

Now that the Switch 2 inherits NVIDIA’s completely redesigned boot processor with formal verification, written in entirely memory-safe languages used for rockets and trains (ADA SPARK), with lockstep booting (two cores executing instructions simultaneously and verifying their work), and voltage monitoring / glitch detection as the cherry on top; Switch 2 won’t be cracked in the next decade, possibly two.


Honestly the Switch 2 and PS5 bring nothing valuable to the table!

Maybe that's why they wont get hacked.


> But the article also says you can replace that public key, also they are from the motherboard, not CPU manufacturer.

No. The article does state that EKs come from your fTPM, which is part of your CPU package.

Without replacing your CPU, you are not replacing your EK, or `EKpub`.

Unless you install a discrete TPM, who's `EKpub` won't be signed by Intel or AMD; thus easily detectable as a discrete TPM.


dTPM means it removable on motherboard. fTPM means it's in the CPU or some chip soldered to the motherboard?

They cannot distinguish between the dTPM and the one that is soldered? Because the one soldered is signed by the motherboard manufacturer.

If they only allow CPU signed TPM they are scrapping millions of perfectly fine machines.

RIP Microsoft and all AAA gamedevs.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: