post here : collective.flashbots.net/t/a… tl;dr: * Modern TEEs are not physically secure and this attacks serves as a reminder. * The attacks do not require an update to our systems or plans. All our current systems have checks to make sure infra is running in vetted clouds. Azure, GCP etc. are part of the trust model * We have been aware of this limitation for a while so we are doing a bunch of work to get to a permissionless system through a system of slowly relaxing the trust model * In the short run, we are working on ways to allow nodes in the cloud to prove that they are in the cloud - this makes it easier to be permissionless within the cloud * There are a bunch of different folks working on dealing with physical (and supply chain) attacks. This includes the Trustless TEE Initiative which was born in FB and is working towards open source silicon that is secure against attacks like these (and many more). * Outside of Trustless TEE, there are a bunch of people working on physically secure hardware. There are a lot smarter robots and AI models going out into the world and people need to secure them (and the data they hold/process). * Vitalik also recently announced Vensa which is working on open source and secure silicon Still bullish TEEs. There isn't and won't be a complete replacement for many years if ever, and we are very excited about the work we and the rest of the community are doing and bullish TEEs.