zlacker

[parent] [thread] 1 comments
1. falcol+(OP)[view] [source] 2017-07-11 18:51:48
Ultimately a compiler is just a bit of software; one that takes inputs and produces outputs. The identification of compromise is the difference in outputs for the same inputs (simplified, of course).

So, given we can control most inputs to hardware, and most outputs, it seems possible to objectively identify when the HW is misbehaving (such as "A" produces network output that "B" does not). It wouldn't nail down which piece of hardware was compromised, but it would help identify that hardware is compromised.

It will never be _that_ easy, of course... but it seems possible.

replies(1): >>jancsi+Iq1
2. jancsi+Iq1[view] [source] 2017-07-12 13:38:51
>>falcol+(OP)
> It wouldn't nail down which piece of hardware was compromised, but it would help identify that hardware is compromised.

Do TCP timings and retransmissions count as difference in outputs?

[go to top]