| ▲ | bayindirh 4 hours ago |
| It's probably built on systemd's Secure Boot + immutability support. As said above, it's about who controls the keys. It's either building your own castle or having to live with the Ultimate TiVo. We'll see. |
|
| ▲ | direwolf20 4 hours ago | parent | next [-] |
| We all know who controls the keys. It's the first party who puts their hands on the device. |
| |
| ▲ | curt15 2 hours ago | parent | next [-] | | And once you remove the friction for requiring cryptographic verification of each component, all it takes is one well-resourced lobby to pass a law either banning user-controlled signing keys outright or relegating them to second-class status. All governments share broadly similar tendencies; the EU and UK govts have always coveted central control over user devices. | |
| ▲ | bayindirh 4 hours ago | parent | prev [-] | | Doesn't have to be. While I'm not a fan of systemd (my comment history is there), I want to start from a neutral PoV, and see what it does. I have my reservations, ideas, and what it's supposed to do, but this is not a place to make speculations and to break spirits. I'll put my criticism out politely when it's time. |
|
|
| ▲ | zb3 4 hours ago | parent | prev [-] |
| Just to make it clear - on Android you don't have the keys. Even with avb_custom_key you can't modify many partitions. |
| |
| ▲ | bayindirh 4 hours ago | parent [-] | | None of the consumer mobile devices give you all the keys. There are many reasons for that, but 99.9% of them are monetary reasons. | | |
| ▲ | zb3 24 minutes ago | parent [-] | | But I want to buy that kind of device for money and I can't.. something is wrong with the market, looks like collusion.. |
|
|
