• hansl@lemmy.ml
    link
    fedilink
    arrow-up
    2
    ·
    1 year ago

    I’m an engineer with trade secrets on his laptop. I’ve heard of dozens of people getting laptops stolen from their cars that they left for like ten or fifteen minutes.

    The chances are slims, but if it happens I’m in deep trouble whether those secrets leak of not. I’m not taking the risk. I’m encrypting my disk.

    It’s not like there’s a difference in performance nowadays.

    • duncesplayed@lemmy.one
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      TPM’s not going to help with that situation, though, right? Either you’re typing in your encryption password on boot (in which case you don’t need TPM to keep your password), or you’re not, in which case the thief has your TPM module with the password in it.

      • pcouy@lemmy.pierre-couy.fr
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        From what I understand, TPM is “trusted” because of the fact the secrets it contains are supposed to be safe from an attacker with hardware access.

        This is what makes it good at protecting data in case of a stolen laptop. This is also what makes it good at enforcing offline DRM or any kind of system where manufacturers can restrict the kind of software users can run on their hardware.