A device can do the whole DRM/container "trust" thing but still let untrusted OSes run, just with fewer capabilities. UEFI secure boot/Windows implement something like this, I think. Basically, hardware stores a crypto key or the like that's accessible only while a trusted OS is running--it's a fancier version of "flashing your device voids your warranty."
I think for their own sake Samsung should take the "make alternate ROMs detectable" route rather than depend on fully locking out other ROMs. For one thing, if they fully lock out ROMs, they're enlisting the whole xda-developers type world to try and break their devices' bootloaders, which (as we've seen) will happen, then happen again, and that can't be good for the security reputation they're trying to create. Whichever way they've gone, the ship's probably already sailed, so looking forward to seeing if I need to go for a Nexus again next cycle, heh.
Be aware Verizon are forcing you to change over to tiered data plans when upgrading to the Samsung S4 ..... hope you don't mind switching to sprint or Tmobile for an unlimited handset the way it was designed to be used.
We’ve updated our terms. By continuing to use the site and/or by logging into your account, you agree to the Site’s updated Terms of Use and Privacy Policy.
Facebook
Twitter
RSS
3 Comments
Back to Article
twotwotwo - Monday, February 25, 2013 - link
A device can do the whole DRM/container "trust" thing but still let untrusted OSes run, just with fewer capabilities. UEFI secure boot/Windows implement something like this, I think. Basically, hardware stores a crypto key or the like that's accessible only while a trusted OS is running--it's a fancier version of "flashing your device voids your warranty."I think for their own sake Samsung should take the "make alternate ROMs detectable" route rather than depend on fully locking out other ROMs. For one thing, if they fully lock out ROMs, they're enlisting the whole xda-developers type world to try and break their devices' bootloaders, which (as we've seen) will happen, then happen again, and that can't be good for the security reputation they're trying to create. Whichever way they've gone, the ship's probably already sailed, so looking forward to seeing if I need to go for a Nexus again next cycle, heh.
Egg - Monday, February 25, 2013 - link
Can trusted and untrusted OSes be run simultaneously, though? All I've heard was you can do some sort of dualboot.Dean.Collins - Thursday, April 25, 2013 - link
Be aware Verizon are forcing you to change over to tiered data plans when upgrading to the Samsung S4 ..... hope you don't mind switching to sprint or Tmobile for an unlimited handset the way it was designed to be used.