DRTM, SMM attestation and remote attestation have evil maid attacks in their thr... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

walterbell 4 months ago | parent | context | favorite | on: Make your electronics tamper-evident

DRTM, SMM attestation and remote attestation have evil maid attacks in their threat model, with a firmware TPM or SoC enclave that isn't subject to mitm.

Password keystroke surveillance (from sniffer, optical cameras or RF WiFi Sensing) can be mitigated by removable 2FA/smartcard.

TEMPEST info leakage from displays, components or RF implants can be measured, as SDRs and machine learning lower decoding costs, https://news.ycombinator.com/item?id=41116682

Some enterprise PCs can detect when the case cover is opened, e.g. http://h10032.www1.hp.com/ctg/Manual/c07055601.pdf

rocqua 4 months ago [–]

All of those really reduce the risk. But I wouldn't trust them to be able to stop the CIA, KGB, or whatever the Chinese equivalent is.

walterbell 4 months ago | [–]

Nation-state attackers can afford to exploit zero-day vulnerabilities that bypass OS security protections.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact