Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
mike-cardwell
on Jan 20, 2017
|
parent
|
context
|
favorite
| on:
Lavabit Reloaded
So they're using a HSM to protect the SSL key this time. Makes me wonder how many HSMs out there are already backdoored.
cuckcuckspruce
on Jan 21, 2017
[–]
My mind tells me that it's not a large amount, but given that the USG has a track record of intercepting routers in the mail and installing surveillance software in them, my guts tell me to be very wary.
nikcub
on Jan 21, 2017
|
parent
[–]
The whole point of an HSM is that you can't physically tamper with it.
Vendors also provide ways to validate HSM's
https://www.thales-esecurity.com/msrms/validate
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
