Conversation

Replying to and
They seem to often take the shortcut of implementing insider attack resistance by disallowing firmware upgrades when it's enabled rather than making a proper implementation of it. I assume the requirement is about forcing it as a standard feature without major caveats.