‘Never trust the client’, an adage that modern game developers have apparently forgotten. The only thing one can ultimately trust is the server. Anything client-side, beyond keeping honest people honest, is doomed to failure.
Regular (ie, not kernel-level) anti-cheat is as far as it needs to go. Anything delving past that, such as into kernels, is dumb and an increasing level of security risk for the consumer.
Kernel level AC only makes sense if you’re not selling games, you’re selling platforms for micro transactions.
They don’t give a fuck about a ‘true’ gameplay experience.
They do give a fuck about not being able to groom children into gambling addictions later in life, and making astounding amounts of money while doing so.
but don’t you need kernel access to verify everything that is running
You want to be sure if the integrity of the binaries that are running. That needs a chain of trust from firmware to user space.
‘Never trust the client’, an adage that modern game developers have apparently forgotten. The only thing one can ultimately trust is the server. Anything client-side, beyond keeping honest people honest, is doomed to failure.
Regular (ie, not kernel-level) anti-cheat is as far as it needs to go. Anything delving past that, such as into kernels, is dumb and an increasing level of security risk for the consumer.
Kernel level AC only makes sense if you’re not selling games, you’re selling platforms for micro transactions.
They don’t give a fuck about a ‘true’ gameplay experience.
They do give a fuck about not being able to groom children into gambling addictions later in life, and making astounding amounts of money while doing so.
Why care about the binaries when you can have AI write you a script for an ESP32 to scan a video camera and mimic hardware mouse inputs?