Remix.run Logo
Remix clone Hacker News
new | show | ask | jobsGithub
jnwatson 4 hours ago

The whole point of this is so that when someone steals your phone, they can't install an older vulnerable version of the firmware than can be used to set it back to factory settings which makes it far more valuable for resale.

palijer 2 hours ago | parent | next [-]

Phone thieves aren't checking which phone brand I have before they knick my phone. Your scenerio is not improved by making Oneplus phones impossible to use once they're stolen.

creato an hour ago | parent [-]

It reduces the expected value of stealing a phone, which reduces the demand for stolen phones.

palijer an hour ago | parent [-]

I find it hard to believe that Oneplus is spending engineering and business recourses, upsetting a portion of their own userbase, and creating more e-waste because they want to reduce the global demand for stolen phones. They only have like 3% of the total market, they can't realistically move that needle.

I don't understand what business incentives they would have to make "reduce global demand for stolen phones" a goal they want to invest in.

charcircuit 10 minutes ago | parent [-]

This is a security feature from Qualcomm. So there is little of their own time spent on this.

echelon an hour ago | parent | prev | next [-]

I'm fine with a total loss of hardware. I'd rather the hardware do what I want. I own it.

QuiEgo 3 hours ago | parent | prev [-]

It'd be ideal if the phone manufacturer had a way to delegate trust and say "you take the risk, you deal with the consequences" - unlocking the bootloader used to be this. Now we're moving to platforms treating any unlocked device as uniformly untrusted, because of all of the security problems your untrusted device can cause if they allow it inside their trust boundary.

We cant have nice things because bad people abused it :(.

Realistically, we're moving to a model where you'll have to have a locked down iPhone or Android device to act as a trusted device to access anything that needs security (like banking), and then a second device if you want to play.

The really evil part is things that don't need security (like say, reading a website without a log in - just establishing a TLS session) might go away for untrusted devices as well.

charcircuit 8 minutes ago | parent [-]

>and then a second device if you want to play.

With virtualization this could be done with the same device. The play VM can be properly isolated from the secure one.