Hacker News new | ask | show | jobs
by j16sdiz 1161 days ago
The protocol don't allow that.

But we are talking about the manufacturer: they can add a backdoor and sell the backdoor as a feature for subscribed user.

That is what gp is talking about.
1 comments
labcomputer 1161 days ago
Well, sure, but that completely defeats the purpose of a security token. The whole point is that you can’t extract the crypto secret, even if you ask nicely.

In fact, the sales literature brags about how the secret never leaves the device!

link