Your tinfoil hat is showing…

Do you have an actual argument? Because again, I’m literally forced to have a TPM module to use the current version of Windows. You can’t say “that’s crazy conspiracy talk” WHILE IT’S HAPPENING.

IIRC you can store new keys in the TPM, they’re just not going to be signed by the manufacturer.

Yes, which is the problem.

That wouldn’t work… and isn’t how that works… That would require browser vendors to actually implement some kind of “here’s my TPM” handshake and websites to care enough to refuse service if you fail that validation.

Yes, in a hypothetical scenario where browser vendors are forced to implement a TPM handshake, they’d have to implement a TPM handshake. Since the hypothetical situation isn’t reality as of right now, it’s not how that works. Are you playing dumb?

If someone wanted to do that, they could do that already without a TPM. Error: “You must have a valid license from Microsoft or Apple DRM to use the internet.”

Yes, but I can currently create a new account or otherwise circumvent these issues. There is no way to block my device in a centralised manner, except that now the hardware is in place to force such a thing by regulatory bodies.

Also, a TPM is not DRM, it’s a cryptography coprocessor with verifiably secured keys… that’s just a unique hardware function that’s desirable (particularly for certain corporate environments, militaries, etc), that want to verify their devices haven’t been hacked) can’t be done any other way.

I never said a TPM is DRM. Could you try to stay on point?

Fearing a TPM is like the folks foreshadowing that secure boot was going to be the end of Linux; it wasn’t and it isn’t. That’s true of this particular piece of hardware as well (and, it can be used for other things).

No, it’s not.