[Cryptech Tech] arm
Joachim Strömbergson
joachim at secworks.se
Tue Jan 20 11:56:15 UTC 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Aloha!
Fredrik Thulin wrote:
> One way of being careful is what I believe Peter G. is advocating
> here and adding an external chip with a USB host controller and a SPI
> interface, in the hopes that the SPI interface in our main MCU has
> less bugs than the USB interface in the main MCU (likely true IMHO).
One way of doing this is to actually implement that USB-SPI interface
ourself as a separate FPGA design. It could then be audited and tested
with fuzzers etc. And we would control how that HW would handle error
conditions and things we don't want. The update mechanism would simply
not be implemented for example.
We would not get the nice, USB 2.0 Sticker, but we would probably have a
good USB firewall/filter.
This could be run as a separate sub project. The deliverable is (imho)
clear. There are quite probably open cores with suitable license to
start out from.
- --
Med vänlig hälsning, Yours
Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
Joachim Strömbergson Secworks AB joachim at secworks.se
========================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/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=8VvO
-----END PGP SIGNATURE-----
More information about the Tech
mailing list