@OP (Gabe) thanks for your email and it is useful to explore how laws might affect OpenBSD Users / OpenBSD Projects,
do you have a link to the relevant statue / Act that is being implemented in California, I know in the EU there are carveouts for SMEs for regulations that are considered burdensome (and mainly targeted at the bigger players) but with out a link to the relevant statute we are all somewhat in the dark.. I certainly dont want OpenBSD users in California to be disadvantaged by such a law... if the law is poorly drafted it would probably be worth our while to write a letter to Californan law makers / AGs can you let us know the title of the ACT / proposal / link to the text please.. All the Best, Tom On Thu, 5 Mar 2026 at 07:33, Stephen Wiley <[email protected]> wrote: > What and selling CPUs/firmware with writable boot keys will be > contraband like some sort of cyberpunk novel? What will they do about > microcontrollers etc? > > Worst case this makes a mess but the practical reality is there's no way > to actually make it work. > > --Stephen > > On Thu, Mar 05, 2026 at 04:16:28AM +0100, Benjamin Lee McQueen wrote: > > On 2026-03-05 04:06, jslee wrote: > > > On Thu, 5 Mar 2026, at 13:45, Benjamin Lee McQueen wrote: > > > > secure boot and age verification apis are not the same thing. stop > > > > conflating them. > > > > > > What do you think the likely approach to preventing circumvention (eg. > > > via installing an OS that refuses to engage in such chicanery) is > going > > > to be? > > > > uefi lockdown and hardware attestation. > > if microsoft, apple, and google are all legally required to implement > this, > > and you can just wipe the drive and install openbsd to bypass it, then > the > > law is trivially circumventable. regulators will eventually notice this > and > > the pressure moves to hardware vendors and firmware. > > that's the real threat. not the law as written today, but what comes next > > when they realize it doesn't work. > > > > -- Kindest regards, Tom Smyth.
