zlacker

[parent] [thread] 3 comments
1. fsflov+(OP)[view] [source] 2022-03-22 12:38:06
> If a theoretical currently non-existent open source RISC-V smartphone SoC existed and it had comparable privacy/security (which would be very difficult), we'd be very interested.

https://www.crowdsupply.com/sutajio-kosagi/precursor

replies(1): >>charci+rM1
2. charci+rM1[view] [source] 2022-03-22 22:02:21
>>fsflov+(OP)
That does not have comparable security.
replies(1): >>fsflov+PR2
◧◩
3. fsflov+PR2[view] [source] [discussion] 2022-03-23 08:36:28
>>charci+rM1
It has a better security. It's open hardware, verifiable, with no proprietary chips whatsoever unlike any Google-targeted phone. Even the physical construction can be verified manually:

> 200 ppi black and white LCD (336 x 536 resolution), 100% inspectable with standard optical microscope

Can you do it with your so much advertised phones? Oh, you "trust" large manufacturers. Good luck with that.

replies(1): >>charci+DV2
◧◩◪
4. charci+DV2[view] [source] [discussion] 2022-03-23 09:16:10
>>fsflov+PR2
>It has a better security

Where is the secure element? Where is the pointer authentication? Where is the secure boot?

>no proprietary chips

The device uses a Xilinx XC7S50 which is proprietary.

>Oh, you "trust" large manufacturers.

Yes, I do trust large manufacturers. The probability that someone makse you a custom phone to compromise you is practically 0%. The chance they do it via a visible hardware change as opposed to a software change is 0%. If you are that paranoid why not worry about trusting Xilinix in producing a custom bitstream when it sees you trying to synthesize this chip. Fortunately reality is more boring and these companies aren't out to get you.

[go to top]