(securityonline.info)

658 points transpute | 3 comments | 06 May 23 17:39 UTC | HN request time: 0s | source

Show context

codedokode ◴[06 May 23 18:40 UTC] No.35844123[source]▶

Isn't it good? Does leaked key mean that now owners of hardware will be able to read and modify the firmware, including IME, and check it for backdoors?

Such keys should be in the hands of users, not Intel.

replies(5): >>35844144 #>>35844419 #>>35844928 #>>35845513 #>>35845801 #

QuiDortDine ◴[06 May 23 18:42 UTC] No.35844144[source]▶

>>35844123 #

If there was something to leak, it was always going to. Just a matter of when. Pretending otherwise is just security theater.

replies(4): >>35844147 #>>35844361 #>>35844510 #>>35844608 #

guerrilla ◴[06 May 23 18:43 UTC] No.35844147[source]▶

>>35844144 #

Yeah, don't depend on a permanent global conspiracy for your security. Someone always defects and accidents often happen long before that.

replies(4): >>35844184 #>>35844346 #>>35844567 #>>35846541 #

hammock ◴[06 May 23 19:26 UTC] No.35844567[source]▶

>>35844147 #

That’s the same argument that people use to support the second amendment (the people’s right to bear arms)

replies(2): >>35844624 #>>35845896 #

1. Y_Y ◴[06 May 23 19:31 UTC] No.35844624[source]▶

>>35844567 #

Hey, the second amendment says the right to bear arms shall not be infringed, it doesn't say it exists!

replies(1): >>35845976 #

2. aksss ◴[06 May 23 22:38 UTC] No.35845976[source]▶

>>35844624 (TP) #

"keep and bear" :^)

replies(1): >>35851552 #

3. Y_Y ◴[07 May 23 13:55 UTC] No.35851552[source]▶

>>35845976 #

What do you mean? It also says that states should have militias or something, but I didn't feel that was relevant.

↑

Intel OEM Private Key Leak: A Blow to UEFI Secure Boot Security