70
Microsoft Pluton - How bad is this on a new Intel/AMD laptop running Linux?
(learn.microsoft.com)
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
much thanks to @gary_host_laptop for the logo design :)
Likely because of this:
Emphasis mine. It's an optional function, and this sounds like it's targeted to businesses who either provide or have IT services. So like TPM, you can use it or not, and given the sharp rise in ransomware and other attacks, I can see why a business might want to use it.
How bad is it? I dunno. It seems to be so "noteworthy" that nobody is talking about it, and it sounds very optional.
'optional' just like the functions Intel ME provides?
Vendors are no longer actively implementing the pluton spec. It's not in itself equivalent to Intel ME, whereas something like platform security processor (aka PSP - based on ARM TrustZone) could be considered a closer equivalent.
can you please explain in a little more depth? are you saying pluton is basically dead in the water and is likely to disappear from implementations in silicon in the near future?
Pluton capable hardware is present on a wide range of contemporary IHV offerings (requires TPM2 hw on the SoC) but OEMs selling devices with these don't seem remotely interested in enabling it.
Vendor uptake has been minimal, and participating vendors seem to have changed their minds and stopped, though I don't think this will affect hw implementation as that wasn't really governed by Microsoft to begin with.
I can't personally say. Beyond my knowledge.
I mean not to be a tin foil hat but they are not going to admit to negative side effects. Take issues with right to repair and how they fly under the radar. John Deere is a big offender that affects everyone and few will know. Your food supply should be noteworthy.
I appreciate your analogy, and I recognize that the numerous Linux kernel maintainers haven't so much as made a peep about this in the last two years—plenty of other drama, but not that.
It could be that it has flown under everyone's radar, or it could be that it's not anything to worry about (yet?).