Trusted by whatever certification entities (ideally multiple ones, from non-aligned states) decide to deem a certain piece of hardware as "trusted". And then by extension, by any individual that trusts those particular certification authorities.

Yes, I'm aware this leaves the door open for subversion of certification authorities by nation-states. It's still better than the nothing we have today.