Hm, I don't know if Mullvad uses shielded VMs for their infra. I guess it would be neat, but I'm more talking about privacy-oriented generic-hosting providers that provided shielded VMs.
Maybe it's just where my head is at, but I look at something like the GP's post and go "cool!" and then realize that such a property would be a prime example of a honeypot. Do I think there are individuals interested in offering low-margin "privacy" VPS services that accept crypto? Yes. But also, I suspect there's plenty of intelligence outfits that would spin up such a project as a fun side project to spy on guest VMs. :| Unbounded money goes a long way. And while I like to cosplay paranoia, I just have to assume that clients of such services are seeking anonymity for Reasons.
Shielded VMs + monero payments would at least move the bar up to "you need to be a target worth leaning on AMD/Intel for shielded-vm compromise".
Granted, I think you could also create infra architecture that allows you to treat these cannon-fodder, but I digress.
Maybe it's just where my head is at, but I look at something like the GP's post and go "cool!" and then realize that such a property would be a prime example of a honeypot. Do I think there are individuals interested in offering low-margin "privacy" VPS services that accept crypto? Yes. But also, I suspect there's plenty of intelligence outfits that would spin up such a project as a fun side project to spy on guest VMs. :| Unbounded money goes a long way. And while I like to cosplay paranoia, I just have to assume that clients of such services are seeking anonymity for Reasons.
Shielded VMs + monero payments would at least move the bar up to "you need to be a target worth leaning on AMD/Intel for shielded-vm compromise".
Granted, I think you could also create infra architecture that allows you to treat these cannon-fodder, but I digress.