@BrendanEich @dakami @ashk4n at any time they could push code that instructs your browser to hand over your "secret master key" to them
-
-
@bascule@dakami@BrendanEich@ashk4n Yikes, those are some real disadvantages. Especially the cross-DC problem. -
@grittygrease@dakami@BrendanEich@ashk4n cross-DC problem is solvable, and HSMs are a PITA but certainly help pass PCI audits ;) -
@bascule@dakami@BrendanEich@ashk4n But why a centralized HSM service instead of a distributed service based on low cost TPMs? -
@grittygrease Bletchley is decentralized with no single point of failure. See the note at the end of slide #33 /cc@dakami -
-
@grittygrease@dakami you don't really have any other option if you want to keep the key airgapped -
-
@grittygrease@dakami nope, the keys never hit the wire in any form. This is also nowhere close to unprecedented in the payments industry ;) - 7 more replies
New conversation -
-
-
@bascule@BrendanEich@ashk4n most airgapped systems have high failure rates. Congrats for being an exception!Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.