Tweet
I knew that each separate thing was bad for privacy. I did not know how they all interact with each other. It is much worse than I thought. Rob Braxman goes into detail on all of this in the video linked below.
Windows 11 and any software that has admin access on the computer can use the TPM's API. Each TPM has a unique Endorsement Key(EK) which can be used to identify the computer. Microsoft runs the Platform Crypto Provider (PCP) which is a cloud based provider which interacts with the TPM. Every piece of software that wants to verify the computer, user, etc. through the TPM is using the PCP. This is going over Microsoft's servers. This means Microsoft has the data in addition to the 3rd party software vendor that is calling up the TPM services in the first place.
Tie this in with Windows requiring a MS cloud account by default. Now the specific computer is tied to a person's true identity. MS is really pushing Windows Recall and Copilot. Recall takes screen shots every 3 seconds. Copilot has access to everything on the computer and may be listening to the microphone at all times.
This creates the very real scenario where your behavior on your computer is logged. The AI could be ordered by either MS or a government entity to report any suspicious behavior. If someone does not like what you are doing, you could be completely locked out of your computer or the authorities could be sent to your door. When hackers eventually compromise the system, they will be able to order the AI to send them all of your accounts, passwords, financial information, blackmail material, etc.
Windows 11 and any software that has admin access on the computer can use the TPM's API. Each TPM has a unique Endorsement Key(EK) which can be used to identify the computer. Microsoft runs the Platform Crypto Provider (PCP) which is a cloud based provider which interacts with the TPM. Every piece of software that wants to verify the computer, user, etc. through the TPM is using the PCP. This is going over Microsoft's servers. This means Microsoft has the data in addition to the 3rd party software vendor that is calling up the TPM services in the first place.
Tie this in with Windows requiring a MS cloud account by default. Now the specific computer is tied to a person's true identity. MS is really pushing Windows Recall and Copilot. Recall takes screen shots every 3 seconds. Copilot has access to everything on the computer and may be listening to the microphone at all times.
This creates the very real scenario where your behavior on your computer is logged. The AI could be ordered by either MS or a government entity to report any suspicious behavior. If someone does not like what you are doing, you could be completely locked out of your computer or the authorities could be sent to your door. When hackers eventually compromise the system, they will be able to order the AI to send them all of your accounts, passwords, financial information, blackmail material, etc.
Comment