[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Fwd: [Cryptography] Did Intel just execute its warrant canary ?

To: Christian Gagneraud <[email protected]>
Subject: Fwd: [Cryptography] Did Intel just execute its warrant canary ?
From: [email protected] (coderman)
Date: Wed, 10 Jun 2015 10:24:38 -0700
Cc: [email protected]
In-reply-to: <[email protected]>
References: <[email protected]> <CAD2Ti28zXRUpHEWvJJ0n6v8g13+_M+Fig47R-zQ0U_zsU+_Bog@mail.gmail.com> <[email protected]> <[email protected]> <[email protected]>

On 6/9/15, Christian Gagneraud <[email protected]> wrote:
> ...
> so with physical access to the hardware you can ...

if your threat model is NSA,
 and they get arbitrary physical access,
  you have concerns much larger than insecure default JTAG configurations...

i'd be happy with a device providing system JTAG controller
restrictions (IEEE 1149.1, 1149.6) bound by efuses. most of these
features go un-used in practice. :/

best regards,

References:
- Fwd: [Cryptography] Did Intel just execute its warrant canary ?
  - From: [email protected] (grarpamp)
- Fwd: [Cryptography] Did Intel just execute its warrant canary ?
  - From: [email protected] (Troy Benjegerdes)
- Fwd: [Cryptography] Did Intel just execute its warrant canary ?
  - From: [email protected] (Christian Gagneraud)
- Fwd: [Cryptography] Did Intel just execute its warrant canary ?
  - From: [email protected] (Christian Gagneraud)

Prev by Date: Possible SigInt Metadata Dump Files Circulating
Next by Date: The_Mystery_of_Duqu_2_0_a_sophisticated_cyberespionage_actor_returns [ED: duqu continued; they never left! ]
Previous by thread: Fwd: [Cryptography] Did Intel just execute its warrant canary ?
Next by thread: [Cryptography] Proposed US ITAR changes would require prepublication approval for most crypto research
Index(es):
- Date
- Thread