‘Never trust the client’, an adage that modern game developers have apparently forgotten. The only thing one can ultimately trust is the server. Anything client-side, beyond keeping honest people honest, is doomed to failure.
Regular (ie, not kernel-level) anti-cheat is as far as it needs to go. Anything delving past that, such as into kernels, is dumb and an increasing level of security risk for the consumer.
Maybe so, but kernel cheats these days are extremely easy to make, even more so on linux (since you can just hotload them at will while windows whines about signing).
‘Never trust the client’ does very little to prevent automation and aimbots.
In league of legends for example, kernel cheats that auto-aim your skillshots and automatically walk out of the enemy’s were really common, especially in high elo, and there is nothing the server can do to prevent them. I’ve seen my fair share of cheaters around GM elo over the years, but now, I don’t think I’ve seen a single one since they added vanguard. Though it does suck that I still need a windows partition.
Kernel level AC only makes sense if you’re not selling games, you’re selling platforms for micro transactions.
They don’t give a fuck about a ‘true’ gameplay experience.
They do give a fuck about not being able to groom children into gambling addictions later in life, and making astounding amounts of money while doing so.
The chain of trust will depend on the hardware. I would expect on a Steam Deck it would be Valve all the way. If it was Ubuntu it would be Microsoft then Canonical. I doubt any random distro would be acceptable to the games wanting to enforce anti cheat.
You can secure boot most distros these days. It’s not new either. Depends on who it what their anchor is, and if it’s more limited than just secure boot being active.
Kernel access isn’t needed if they use signed boot and can verify everything running is what it should be.
but don’t you need kernel access to verify everything that is running
You want to be sure if the integrity of the binaries that are running. That needs a chain of trust from firmware to user space.
‘Never trust the client’, an adage that modern game developers have apparently forgotten. The only thing one can ultimately trust is the server. Anything client-side, beyond keeping honest people honest, is doomed to failure.
Regular (ie, not kernel-level) anti-cheat is as far as it needs to go. Anything delving past that, such as into kernels, is dumb and an increasing level of security risk for the consumer.
Maybe so, but kernel cheats these days are extremely easy to make, even more so on linux (since you can just hotload them at will while windows whines about signing).
‘Never trust the client’ does very little to prevent automation and aimbots.
In league of legends for example, kernel cheats that auto-aim your skillshots and automatically walk out of the enemy’s were really common, especially in high elo, and there is nothing the server can do to prevent them. I’ve seen my fair share of cheaters around GM elo over the years, but now, I don’t think I’ve seen a single one since they added vanguard. Though it does suck that I still need a windows partition.
Kernel level AC only makes sense if you’re not selling games, you’re selling platforms for micro transactions.
They don’t give a fuck about a ‘true’ gameplay experience.
They do give a fuck about not being able to groom children into gambling addictions later in life, and making astounding amounts of money while doing so.
Why care about the binaries when you can have AI write you a script for an ESP32 to scan a video camera and mimic hardware mouse inputs?
Signed by who?
Signed by EA, of course
The chain of trust will depend on the hardware. I would expect on a Steam Deck it would be Valve all the way. If it was Ubuntu it would be Microsoft then Canonical. I doubt any random distro would be acceptable to the games wanting to enforce anti cheat.
You can secure boot most distros these days. It’s not new either. Depends on who it what their anchor is, and if it’s more limited than just secure boot being active.
IM A KERNEL PLAYING A KERNEL DISGUISED AS ANOTHER KERNEL