I'm just going to state again what I want, which is only tangentially related to the topic...

1) I go on Github and configure a service

2) I make a wallet that people can donate to

3) I start up a virtual machine, aimed at the Github, using the wallet to pay for the time on the machine. The virtual machine host guarantees that the code at that Github is what's really running.

I can imagine lots of other things I want, too, but this is the bare minimum. I think it'd be really useful in a lot of scenarios.

rubicks

> The ... host guarantees...

This is a really hard problem with "solutions" that usually run counter to privacy and, you know, controlling the machine consuming your electricity. Remote Attestation has come a long way, but (at least on Linux) still in its infancy.

capableweb

First time I hear about "Remote Attestation", got any trusted sources/resources for someone to read up on it more? (besides Wikipedia and it's sources)

aspenmayer

Here's some words Red Hat folks wrote[0] about Keylime[1][2], "open source scalable trust system harnessing TPM Technology,"[3] written in python and rust, originally created within MIT Lincoln Labs.[4] It leverages TMP 1.2 and 2.0[5] and also involves/includes/references code from Intel[6] and Cloudflare[7].

[0] https://next.redhat.com/2019/06/25/keylime-using-tpm-to-secu...

[1] https://keylime.dev/

[2] https://www.youtube.com/watch?v=Qhr_aVBCZPw

[3] https://github.com/keylime/keylime

[4] https://www.ll.mit.edu/news/laboratory-staff-develop-new-cyb...

[5] https://github.com/tpm2-software

[6] https://www.intel.com/content/www/us/en/architecture-and-tec...

[7] https://github.com/cloudflare/cfssl