There's a naive belief that hardware crypto means more secure crypto. In reality hardware crypto means crypto that's harder to audit.
-
-
Replying to @hanno
For a signing device, the main possible things you need to audit are keygen (if it does it) and exfiltration backdoors.
2 replies 0 retweets 1 like -
Replying to @RichFelker @hanno
The former is nearly impossible, latter is relatively easy. IMO the conclusion is you should never allow hardware devices to do keygen.
1 reply 0 retweets 2 likes
Replying to @RichFelker @hanno
Worst-case, the hardware device's RNG is intentionally implemented as hash(serial_no+vendor_secret+counter).
5:14 PM - 17 Oct 2017
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.