[Cryptech Tech] Roadmap & remarks about the opportunity of developing a secure TOR router on the Novena platform.

Joachim Strömbergson joachim at secworks.se
Wed Aug 6 12:37:56 UTC 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Aloha!

Good that you are not designing a CPU from scratch. OpenRISC is at
available and have good support of tools and has been proven in many
FPGA and ASIC designs.

★ STMAN ★ wrote:
> Building a TOR processor, a non-micro-coded processor, a pure hard 
> coded logic controller, is from far the best approach to reduce the 
> attack surface to the minimum level.

Sorry, you lost me there, can you elaborate?

And I think we are still talking about different types of systems here.

The minimal move-the-key-handling-to-a-separate-machine that I talked
with Linus about should definitely only require a very simple, hard
coded FSM.

A full router would require at least a core do do control plane
processing. But then I get confused with the talk about PCIe and having
a board inside a PC.

Can we start by discussing what basic functions you see need to be
supported and the performance targets?

- -- 
Med vänlig hälsning, Yours

Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
 Joachim Strömbergson          Secworks AB          joachim at secworks.se
========================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.22 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=Vbz1
-----END PGP SIGNATURE-----


More information about the Tech mailing list