Where did I say a malware injected GrapheneOS image will pass hardware attestation?
The problem is that an unmodified GrapheneOS image may also not pass hardware attestation if the app developer has not whitelisted GrapheneOS’s key.
Also I hope GrapheneOS would simply inform the user or refuse to boot if the image does not pass attestation. In that case an app itself requiring attestation, based on it’s own list of accepted keys, has no security value, only gatekeeping potential.
Where did I say a malware injected GrapheneOS image will pass hardware attestation?
The problem is that an unmodified GrapheneOS image may also not pass hardware attestation if the app developer has not whitelisted GrapheneOS’s key.
Also I hope GrapheneOS would simply inform the user or refuse to boot if the image does not pass attestation. In that case an app itself requiring attestation, based on it’s own list of accepted keys, has no security value, only gatekeeping potential.