|
|
|
|
|
|
by pclmulqdq
466 days ago
|
|
|
I don't think it's anywhere close to viable to move the cryptographic parts of the data plane into HSMs/TPMs. There's just too much work to do there, and you have to move plaintext over unsecured channels to do it. That means that you have to put at least an ephemeral key into the CPU, and the rest follows. AES-NI, the SHA instructions, and constant-time subsets of instructions are generally good enough that you can do this in assembly. |
|
|