> whenever I see "remote attestation" I associate this with "hostile"
HN is bizarre. This is just standard infrastructure security practice at any tech company of meaningful size. You are misunderstanding the target use case and audience of this article.
It is true that it is pretty common in large companies. It is also true that it feels very hostile to some people (myself included).
It's absolutely useful for corporate owned infrastructure.
But it's also useful for DRM stuff like authorized 4k blu-ray playback on PCs... which is only allowed on systems with Intel SGX.