Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
rocqua
on Sept 9, 2020
|
parent
|
context
|
favorite
| on:
AMD PSB Vendor Locks EPYC CPUs for Enhanced Securi...
What would such an alternative implementation be?
tyingq
on Sept 9, 2020
[–]
I guess they could provide a key that works with all the fuses blown, and a utility to blow all of them.
Sebb767
on Sept 9, 2020
|
parent
[–]
In which case you could easily blow all fuses, sign your malicious firmware with the all-fuses key and you're good to go.
R0b0t1
on Sept 9, 2020
|
root
|
parent
[–]
No, this won't work if the user is checking the attestation ability of the firmware or system. A similar exploit already exists by just modifying the firmware and expecting the user the just replace the CPU without checking the BIOS.
Join us for
AI Startup School
this June 16-17 in San Francisco!
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
