zlacker

[parent] [thread] 3 comments
1. alex77+(OP)[view] [source] 2023-07-25 14:33:48
How expensive would it be to rip the signing keys off the TPM? People used to do it to get free satellite TV but I imagine it's way more expensive now with the smaller transistor sizes
replies(1): >>grishk+2m
2. grishk+2m[view] [source] 2023-07-25 15:54:31
>>alex77+(OP)
Doesn't every TPM use a unique key to prevent this exact thing happening? If you do rip the key off of it and publish it, they'd just blacklist that particular key as "compromised".
replies(2): >>alex77+mw >>strbea+5y
◧◩
3. alex77+mw[view] [source] [discussion] 2023-07-25 16:26:18
>>grishk+2m
I guess. But if the key stays private it could power a scraper or a proxy.

Just wondering just how expensive it really is to rip the key out (or to have access to the tools to do it)

◧◩
4. strbea+5y[view] [source] [discussion] 2023-07-25 16:31:06
>>grishk+2m
Rip the key off the cheapest android phone you can buy, or an old one after you've upgraded. Don't publish it - pass it to your rooted phone which can now use an emulated TPM.
[go to top]