Idea: secure boot signing system that lives on your phone. Bootloader updates trigger a Bluetooth communication that requires affirmative consent on your phone and then signs the bootloader with a key that never leaves your phone.
-
-
If a request is being triggered then either: 1) I'm getting a legitimate update 2) My distro's entire infrastructure has been comprehensively owned 3) My machine is already compromised
-
I don't get your point. In all three cases, the user will think "ah, I'm getting a legitimate system update" and press yes. What hurdle does requiring user consent on a separate device create to an attacker?
- 5 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.