Another day, another time I've got to tap the sign

Another day, another time I've got to tap the sign https://arstechnica.com/information-technology/2024/12/new-badram-attack-neuters-security-assurances-in-amd-epyc-processors/

BDFL of Quilibrium, Eng @ Farcaster, ex-Coinbase, always opinionated, never hydrated

/quilibrium

c/acc - 🏴‍☠️🌊 Bring me that Horizon 🍹
Gold League of Legends player ✨Building an AR Crypto game✨
http://icebreaker.xyz/syed.fc

Our product is secured by MPTeeHee and Shamone Secret Sharing

Rated 💯 by multiple networks. Fluent in /unglish. Unbothered by /whatday of the week it is.

Allegedly a designer.

They do a lot of marketing to try to convince people they are. The reality is while TEEs have a place for defense in depth, being the core of a security model is broken by design. The shift in marketing to sell TEEs for "confidential compute" is the scariest thing I've seen in the space, mostly because people are falling for it.

This continues to be the thing that makes the least sense to me.

We know the T stands for Trusted and that Trusted doesn’t mean the same thing as Trustworthy, right?

At this point when I hear crypto projects unironically mention using TEEs:

TEEs are not great but the alternatives are worse