|
|
|
|
|
|
by greenish_shores
748 days ago
|
|
|
Why resort down to ad personam (the last two paragraphs)? These are not insults, but not valid arguments, either. I know very well about Zerodium. However, FPGAs can be way more secure than any kind of ASICs. If you don't understand why, then I don't think further discussion is warranted. I worked with Apple's implementation of security enclaves, and they don't isolate (or "outsource" to be processed there) nearly as much as should be isolated. For example, whole display and touch input needs to go through the application processor, anyway. It's not a good way to go, to say the least. You can't overlay anything on the top of the display nor isolate touch input from some area (say, virtual keyboard) to go to the enclave. The rest of what it does is pretty meaningless, given these constraints. |
|
|
I wasn't referencing Apple's Secure Enclave - I'm just using the new buzzword for "trusted computing"/trusted execution. Such at this thesis from Cal a couple years ago [0]
> However, FPGAs can be way more secure than any kind of ASICs
I agree with you! The issue is usability (and I guess it depends use case to use case). We gotta navigate a happy path between security and usability. Otherwise users will try to undermine security features.
This is an interesting convo tho. I'm going to favorite this for some thinking later.
> Why resort down to ad personam (the last two paragraphs)? These are not insults, but not valid arguments, either
That wasn't meant to be an ad personam, and if it was I apologize. It's literally was advice I'd give anyone who's worried.
[0] - https://www2.eecs.berkeley.edu/Pubs/TechRpts/2021/EECS-2021-...