zlacker

[return to "Leaked stolen Nvidia cert can sign Windows malware"]
1. pintxo+k8[view] [source] 2022-03-05 11:26:02
>>Zuider+(OP)
If a corp like Nvidia cannot manage to store Code signing certs on hardware only, the whole process is broken beyond repair. What’s the value of signed code going forward?
◧◩
2. Pragma+ju[view] [source] 2022-03-05 14:29:02
>>pintxo+k8
“If it can’t be 100% perfect then what’s the point” is one of my least favorite arguments.

A single or even multiple breaches doesn’t suddenly remove all value from all other code signing models.

[go to top]