←back to thread

The Dangers of Microsoft Pluton

(gabrielsieben.tech)
733 points gjsman-1000 | 8 comments | 26 Jul 22 03:46 UTC | HN request time: 1.292s | source | bottom
1. trh0awayman ◴[26 Jul 22 06:33 UTC] No.32235082[source]
Can RISC-V save us here? Or is it time to start hoarding CPUs?
replies(3): >>32235107 #>>32235328 #>>32236432 #
2. ftyhbhyjnjk ◴[26 Jul 22 06:36 UTC] No.32235107[source]
It's time to start rejecting such corporations. Nothing else would work.
3. zogomoox ◴[26 Jul 22 07:15 UTC] No.32235328[source]
I would assume chinese made RISC-V have their own special sauce.
replies(1): >>32235796 #
4. hammyhavoc ◴[26 Jul 22 08:38 UTC] No.32235796[source]
That's a big assumption.
replies(1): >>32236209 #
5. goodpoint ◴[26 Jul 22 09:45 UTC] No.32236209{3}[source]
...if the schematics and tapeouts are entirely public.

Otherwise you can be assured that there will be backdoors.

replies(1): >>32236459 #
6. meltedcapacitor ◴[26 Jul 22 10:21 UTC] No.32236432[source]
Might be a blessing in disguise?

The libre computing movement got lazy. We got used to care about free software and just accept free-riding on non-free hardware because "hardware too hard" and frankly we got it easy with x86 CPU and PC manufacturers being generally friendly, actively or passively, to free software and actually benefiting from industry concentration. The less attractive proprietary CPUs and other chips get, the greater chance a small but lively open ecosystem develops?

7. freemint ◴[26 Jul 22 10:27 UTC] No.32236459{4}[source]
You can post hoc modify circuits so they look like doing logic A but they actually do logic B by adding new p or n junctions.
replies(1): >>32237598 #
8. goodpoint ◴[26 Jul 22 12:53 UTC] No.32237598{5}[source]
In theory, yes. In practice it is not realistic to implement a plausible-deniable hardware backdoor targeting all CPUs being manufactured while keeping the schematics and tapeout open.

While the same CPUs are even fabbed in different locations around the world.

While also going undetected for years and while none of the engineers involved blows the whistle.

In short no, you can get away with a targeted attack but nothing so massive.