Deleted tweet detection is currently running at reduced
capacity due to changes to the Twitter API. Some tweets that have been
deleted by the tweet author may not be labeled as deleted in the PolitiTweet
interface.
Showing page 95 of 151.
Joanna Rutkowska @rootkovska
@mjg59 Especially for the case of remotely verifying such sensitive services such as Tor, etc. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@mjg59 SGX is an improvement (modulo the silly Launch Enclave drama), but static-based TPM is not. Sorry. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@_zaolin_ (But we don't encourage people that they can remotely verify Qubes integrity, especially in case of a malicious platform owner). — PolitiTweet.org
Joanna Rutkowska @rootkovska
@_zaolin_ It is the BIOS, of course. As explained in the "x86 harmful" paper. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@mjg59 It's a blind alley, architecture-wise. IMHO. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@cynicalsecurity ... vs. a solution which is architecturally sound, but might have occasional implementation bugs. Don't you agree? — PolitiTweet.org
Joanna Rutkowska @rootkovska
@cynicalsecurity I think there is a big difference between a "solution" which has *known*, unsolvable architectural problems (TPM boot) vs.. — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @johnlkinsella: Vendors keep trying to talk up TPM, Joanna’s been exposing them as flawed for yrs. The “T” is dubious. https://t.co/SDmm… — PolitiTweet.org
Joanna Rutkowska @rootkovska
@halvarflake Also b/c it might be appealing to customers (esp. corporations), as it enables also other-than-security benefits. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@halvarflake Joking aside, I believe it might be much more feasible (politically) to introduce & enforce "no persistent state on hw" rule. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@halvarflake Heh :) A few years ago I'd totally agree, and might even wrote: "only political" ;) — PolitiTweet.org
Joanna Rutkowska @rootkovska
DENYALL FTW! (potentially not solving anything in the real world, though...) https://t.co/LOu01k0XoW — PolitiTweet.org
Joanna Rutkowska @rootkovska
Wrong link above, this is the correct one: https://t.co/dHF3AyowHg — PolitiTweet.org
Joanna Rutkowska @rootkovska
@CopperheadOS SGX attempts to solve that problem. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@CopperheadOS From the cloud: yes, from the vendor(s): no (e.g. in SGX we need to trust Intel). — PolitiTweet.org
Joanna Rutkowska @rootkovska
@CopperheadOS ... otherwise can always be emulated. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@CopperheadOS :) Well, looking from the philosophical point of view -- remote attestation always requires some obscurity (DRM)... — PolitiTweet.org
Joanna Rutkowska @rootkovska
And not to look far, here's example of getting over-excited about this half-baked not-providing-meaningful-security… https://t.co/rYLW1Q512H — PolitiTweet.org
isis agora lovecruft @isislovecruft
Remote attestation to verify a server runs expected software—e.g. @SecureDrop—by placing #Tor HS keys in TPM: https://t.co/vNACOFUXY2 @mjg59
Joanna Rutkowska @rootkovska
@halvarflake It's hard to imagine one can enforce all the vendors to use some _specific_ implementation for the interface. — PolitiTweet.org
Joanna Rutkowska @rootkovska
@CopperheadOS It's not "obscurity of TPM" that presents the major problem. I wrote more in my "x86 harmful" paper about this, I believe. — PolitiTweet.org
Joanna Rutkowska @rootkovska
I wrote more about this some yrs ago: https://t.co/8OEN4JUX9o And also more recently: https://t.co/MlPPHe7VN2 — PolitiTweet.org
Joanna Rutkowska @rootkovska
... and I don't I agree with Mathew that static TPM-based attestation can be improved to be actually meaningful :/ — PolitiTweet.org
Joanna Rutkowska @rootkovska
Beware of false sense of security! This is very much a half-baked solution, by-passable in a number of ways. https://t.co/le0aXPr6eb — PolitiTweet.org
Matthew Garrett @mjg59
How we can (potentially) use TPMs to let users verify remote services are trustworthy: https://t.co/fvHHVOxLBr
Joanna Rutkowska @rootkovska
RT @SShackford: And I'm furious because the same people who fought for that safety are telling young LGBT to BE AFRAID. (11/X) — PolitiTweet.org
Joanna Rutkowska @rootkovska
#MonolithicDesktopOSdesignConsideredHarmful https://t.co/3VQpYvPAX7 — PolitiTweet.org
Chris Evans @scarybeasts
[0day] [PoC] Risky design decisions in Google Chrome and Fedora desktop enable drive-by downloads: https://t.co/zkrbt2zr5w
Joanna Rutkowska @rootkovska
Thx for this brain-offloading feature, @Uber! Now that we don't need to worry where & how we should go to, we can f… https://t.co/lLPGuFR1Eq — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @RyokoBebe: My official response to Swastika/Windows '95 Gate. Thanks to all who unwittingly participated. ✌🏼️ https://t.co/xpkn06zoJb — PolitiTweet.org
Joanna Rutkowska @rootkovska
The original tweet somehow disappeared... Your decision, @RyokoBebe? Or a censor's? https://t.co/awwozMVJm7 — PolitiTweet.org
Joanna Rutkowska @rootkovska
Built OpenWRT firmware with all(?) the unverified wgets disabled, flashed to my router and.. it works! Feeling very l33t now :) — PolitiTweet.org
Joanna Rutkowska @rootkovska
RT @Caterina: What to do when you see harassment. Works for all kinds. https://t.co/s3mn2eKbV7 — PolitiTweet.org
