|
|
|
|
|
|
by zakary
641 days ago
|
|
|
What’s really needed is some way you can easily tell that a device has been tampered with, but which is also extremely difficult to bypass. And also where even if the OEM was in on the scheme, you could still tell. Like how a hash is used to tell if someone made changes to a piece of software.
For consumer products this is a nonstarter because companies will almost never fully divulge info about all the parts of a device required for this. For defence product where almost everything is fully specified by the customer, it might be possible. If you know all the components in a device, and you can prove they are all genuine, then you can prove the whole device is genuine. Engraved hashes on every part comes to mind, but that would be ungainly to validate and fairly easy to bypass by simply copying codes from one device to another. |
|
|
This isn’t even very effective for software: people have been working on commit signing, reproducible builds, etc. for ages but it’s just a cascade of trust problems where striking the balance between workable and effective can be extremely challenging. Something like xz or SolarWinds would have had valid signatures on everything, and you still wouldn’t know the real identity of the person responsible for the duplicitous code.