That's fair, although aren't most TPMs nowadays fTPMs? No interceptable communic...

Retr0id · 2026-03-15T02:48:41 1773542921

Until they require fTPMs, an attacker can just choose to use a regular TPM.

A more sophisticated attacker could plausibly extract key material from the TPM itself via sidechannels, and sign their own attestations.

Charon77 · 2026-03-15T03:21:34 1773544894

I remember there's a PCI device that's meant to be snooping and manipulating RAM directly by using DMA. Pretty much one computer runs the game and one computer runs the cheat. I think kernel anti cheats are just raising the bar while pretty much being too intrusive

int_19h · 2026-03-15T07:56:22 1773561382

TFA explicitly describes those devices, and how anti-cheat developers are trying to handle this.

But the main point there is that this setup is prohibitively expensive for most cheaters.

nextaccountic · 2026-03-15T04:59:16 1773550756

what about faulTPM? https://arxiv.org/abs/2304.14717

edoceo · 2026-03-15T03:06:26 1773543986

Can a TPM be faked in a QEMU VM?

kay_o · 2026-03-15T03:12:15 1773544335

We don't allow games to run in virtual machines and require TPM. Check TPM EK signing up to an approved manufacturer.

It is not "fake", a software TPM is real TPM but not accepted/approved by anticheat due to inability to prove its provenance

(Disclosure: I am not on the team that works on Vanguard, I do not make these decisions, I personally would like to play on my framework laptop)

invokestatic · 2026-03-15T03:10:05 1773544205

Technically yes, but it would produce an untrusted remote attestation signature (quote). This is roughly equivalent to using TLS with a self-signed certificate — it’s not trusted by anyone else. TPMs have a signing key that’s endorsed by the TPM vendor’s CA.

carefree-bob · 2026-03-15T03:09:08 1773544148

Yes! https://github.com/stefanberger/swtpm