[cryptography] Which encryption chips are compromised?

Steve Weis steveweis at gmail.com
Fri Dec 13 12:39:47 EST 2013


On Fri, Dec 13, 2013 at 2:32 AM, Jan-Frode Myklebust <janfrode at tanso.net> wrote:
>> What enablement would be "complete" in 2013 for something that has been on
>> the market a year and is already being phased out?
>
> A microcode update ?

I think that compromising microcode update keys is a much more
interesting and believable prospect than compromising RDRAND.

I've seen surprisingly little research around microcode update
security. This post by Ben Hawkes is pretty interesting:
http://inertiawar.com/microcode/


More information about the cryptography mailing list