Why Nostr? What is Njump?
2024-09-09 22:28:01
in reply to

GrapheneOS on Nostr: Hardware attestation is a very useful security feature. It's root-based attestation ...

Hardware attestation is a very useful security feature. It's root-based attestation which is being abused. Having hardware attestation doesn't imply having a single root for verifying that a specific company approved a device. It can be implemented with only pinning support which is the main functionality we use in Auditor ourselves. Roots are useful for the initial verification but the security is very low for root-based verification due to leaked keys.
Author Public Key
npub1kwarc5z9lwhen05uknd2nuwhhthd4ws0cku3t9j3rchm0fcd6luslse0nj