zlacker

[parent] [thread] 2 comments
1. no_tim+(OP)[view] [source] 2022-07-30 01:05:03
>Am I wrong about the effectiveness of this?

Partially. For online attestation you'd be missing the most important part. The vendor signed keypair that is insanely hard to extract from the device.

replies(1): >>traver+i1
2. traver+i1[view] [source] 2022-07-30 01:17:34
>>no_tim+(OP)
I'll extract them for 40k a pop all day long. I've got the hardware in storage from an old contract. Side channel power analysis is fun.
replies(1): >>no_tim+I2
◧◩
3. no_tim+I2[view] [source] [discussion] 2022-07-30 01:32:34
>>traver+i1
lol If I had USA money I'd go for it for 40k.

I've read once about the hardware tricks DRM dongles use in the silicon itself. Doesn't sound like a 40 job :^)

[go to top]