A new security exploit impacting server BMCs. Definitely impacts older Dell systems, but probably HPE, Supermicro, Lenovo, and many others too. This is why MS and Google want a hardware root of trust!https://www.servethehome.com/idracula-vulnerability-impacts-millions-of-legacy-dell-emc-servers/ …
That’s true! But at least root of trust would prevent rogue firmware from being loaded. Buggy isn’t good, but sure beats malicious.
-
-
The only real difference is in the ability for malicious code to be persistent. Buggy SW / HW / systems should be assumed malicious. This is why in addition to HW root of trust we apply methodologies like model checking critical code of the TCB. http://www.kroening.com/papers/cav2018-aws.pdf …
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.