How effective is TPM 2.0 compared to the original ? Are there any reports that demonstrate its effectiveness ?
If a specific version of TPM becomes required to use future versions of Windows, we will have swappable TPM chips ? Eg update your TPM chip just like you update your GPU :)
The ETSI checker you have linked doesn't have anything to do with CA API interoperability and "switch document signer provider".
That's just a basic tool which validates if a signature is PADES/ETSI compliant or not.
The real value in eIDAS would be "unlocked" if they would release a proper API specification with which a digital signatures application would integrate with any EIDAS CA to emit/sign certificates. And then enforce that any eIDAS compliant CA would implement this API.
In practice that means any company/digital signatures product could do a integration with this API once and then be able to use ANY certification authority they want/need/offer best prices for certificates.
Without this API, eIDAS is just a marketing moniker because the power belongs to the selected Certification Authorities. They set the prices, they choose WHOM can integrate with them to isse certificates and there is NO interoperability between them. This doesnt allow for a open market and makes the top players control everything while shouting "standards" and "eIDAS".....
>Which is another way of saying "expensive certificates".
True, basically eIDAS is a cartel. With the help of EU legislation, some Certification Authorities banded together and are now saying that certificates emited by anyone but them are not good. And obviously they fully controll the pricing for the "good" certificates.
>This ensures that the signer cannot revoke the documents already signed. If the receiving party tries to modify the document, the signature becomes invalid
This,fortunately, is a feature of the PDF digital signatures standard.
We are developing a digital signatures solution, https://bulksign.com which also has a on-premise version (in addition to SAAS). In Europe, at least, we see an increase in interest for customers having the solution installed on their own servers for security reasons. So more people become aware that sending your confidential documents to a 3rd party is not that great security wise.
Our product Bulksign https://bulksign.com does this, the name of the product is directly inspired by that feature (sending same documents for signature to hundreds of recipients).
As a KDE user i agree with this point of view. KDE is the most customizabile DE ever created. You can tweak the crap out of it to make it look and behave EXACTLY the way you want it. And, from my experience, the performance of the current 5.x version (running on Wayland) is very good.
>How is it different than having to use GOG's website to install a purchase you made or download an updated version?
You buy game on GOG, dowload the installers, move it to a external HDD and you can install that game forever. This is the only thing that is actually DRM free.
Needless to say, you can't to that with ANY other store (be it Steam, Epic etc). All of them requires you to install their crap to access your bought games and they don't give you full offline installers.
That's like using a car for "traveling" 3 meters. Why not just use dotnet format + .editorconfig , they were created just for this purpose.