After the dust has settled can we please have a serious discussion how intransparency from actors like @intel is harming security? I mean... they ship microcode updates without changelogs. @tehjh + @anders_fogh had to guess how their processors work. They don't comment on ME.
-
Show this thread
-
I fear that's wishful thinking. There aren't any competitors that try to go down the "more transparency" route. And it's not just a CPU issue, that basically affects "all hardware". think about the broadpwn and wifi firmware mess etc.
2 replies 0 retweets 5 likes -
For non-cpu case it mostly comes down to missing isolation. Who cares about wifi or baseband vulns if the chips are isolated & the network layer is untrusted?
1 reply 1 retweet 8 likes -
Replying to @RichFelker @dzxi and
this is a good approach, yet my latest state on this was something like "ok, this chipset can do IOMMU, but for unclear reasons
@Qualcomm has disabled it and they don't comment on it"2 replies 0 retweets 7 likes -
Yes. You can't trust them if they're in the ssme physical Si (without decap & RE) regardless of iommu, or if they have any say in whether they use iommu.
1 reply 0 retweets 1 like
You can trust though if they're isolated by usb and you trust your usb host controller & drivers.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.