Ah, so the computer doesn't need to be trusted at all, it's just an untrusted medium, just like when using encryption when sending data. All the trust would be at the vendor and inside external hardware device.