Hacker News new | past | comments | ask | show | jobs | submit login

Who says the hardware doesn't have a separate IC overriding the ostensibly clean firmware? So you need not only verified hardware schematics, but also verification that the hardware you're running is actually based on that verified design. For which there is currently no way of doing that, as far as I know. You need to either trust the vendor at some level, or treat every device as hostile - while still getting its intended use out of it.



> Who says the hardware doesn't have a separate IC overriding the ostensibly clean firmware?

Cost, space on the PCB or on the die, additional complexity, and it's a very big thing to keep secret.

And if it's found it becomes impossible to deny or chalk up as an innocent mistake.


True, but having to only trust hardware being correctly made is already an improvement over having to trust both software and hardware to be made correctly.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: