[londons_explore]

It's also possible that the root shell is opened up when the tamper seal is triggered.

Ie. The system is either in secure mode (with all necessary crypto keys for operation), or it is in insecure mode with a root shell open for debugging and failure analysis, but that transition also deleted the critical private keys.

[fp64]

Was my guess as well, maybe it's even possible to use it to flash new keys so the device can be used again?

Now I am curious if I can find a terminal myself, if they are actually getting phased out it might not be too difficult to find a used one...

[stgl]

I had the same idea, but no, I tried with a second, untampered one and I also got a working shell. So it does not seem to be dependent on the tamper state.

[numpad0]

wtf? are you saying the shell can be hypothetically drilled for root access without triggering the tamper detection? that'll be ACTUALLY bad...

[fp64]

I think in the article it was even stated that the port is even accessible without drilling!

[lelanthran]

> Was my guess as well, maybe it's even possible to use it to flash new keys so the device can be used again?

What keys would you flash them with? Anything encrypted with your "new" keys can't be decrypted on the other end of the transaction anyway, so what would be the point?

[fp64]

Pretend that I have to pay to watch TV at home? I don't know, sounded fun to me in my head

Plus I meant for the manufacturer to "repair" it. Maybe tamperproof gets triggered if you accidentally drop the device in an unfortunate way