- cryptographic accellerators: a cavium nitrox is a black box, same as gemaltos. the reason these are so secure is because theyre expensive and the implementation and operation is pretty theatrical.
Trust is the key component in your defense strategy, and trust is based on character times competence. Corporations are categorically faceless and as such embody no character, only a profit motive. zero times anything is just zero. The same guys that sold you TPM might leak their keys because you arent buying enough TPM this year. no company will accept fault or liability for your security incident, so dont base your defense on buzzwords alone unless this is risk management for C level obligations to the shareholders.
tl;dr open source security is best security. trust and verify, audit periodically and above all else avoid or mitigate risk in any environment no matter how secure it is assumed.
Can we get a real write up about this rather than a lazy link to GitHub, that’s not even to documentation, but rather just a list of repos? As it is, it’s completely unclear what this is or why I should care.
I don't get the security benefits of this device over any other ARM computer. It seems like a complicated enough device you'd need to run full blown linux on it, and it would communicate over BLE and USB. Are those stacks much more secure than the TCP or UDP stacks for some reason? You'd have the benefit of nobody opening random email attachments or visiting sketchy websites, but the same would be true of any device treated like an appliance or server.
Sorta weird to see this thing back in the news after so long. Seems like they've gone through a revision and have been sold to a larger company since the last time I looked.
