On 7/7/22 14:09, Sharpened Blade via devel wrote:
Also, whats stops the owner of the machine to run the vm in a normal hypervisor, then modify it so any attempts to check if it is "trusted" will always look real.
They cannot fake the attestation without somehow extracting the needed secret keys from the CPU.