Recently I came across Microsoft Pluton while searching for a new laptop. Initially I thought it was like TPM and wouldn’t affect Linux. But the more I researched, the worse it got. According to them
Microsoft Pluton is a chip-to-cloud security technology that provides hardware-based root of trust, secure identity, secure attestation, and cryptographic services
Does it connect to Cloud irrespective of the OS I ran? If yes this could be a privacy nightmare.
Why aren’t more people talking about this? It been here at-least since the last two generation of CPUs from AMD (from my research worst offender) and Intel.
Isn’t this a privacy violation lawsuit waiting to happen? In what ways does this Microsoft Pluton chip affect people who use Linux and should I not buy a new Laptop?
Also what about manufactures like Framework? Are they also forced to work with this chips?
From where I am, used laptops are not worth it.
‘optional’ just like the functions Intel ME provides?
Vendors are no longer actively implementing the pluton spec. It’s not in itself equivalent to Intel ME, whereas something like platform security processor (aka PSP - based on ARM TrustZone) could be considered a closer equivalent.
can you please explain in a little more depth? are you saying pluton is basically dead in the water and is likely to disappear from implementations in silicon in the near future?
Pluton capable hardware is present on a wide range of contemporary IHV offerings (requires TPM2 hw on the SoC) but OEMs selling devices with these don’t seem remotely interested in enabling it.
Vendor uptake has been minimal, and participating vendors seem to have changed their minds and stopped, though I don’t think this will affect hw implementation as that wasn’t really governed by Microsoft to begin with.
I can’t personally say. Beyond my knowledge.