[onerng talk] install & access
Paul Campbell
paul at taniwha.com
Wed Nov 5 19:28:24 GMT 2014
On Thu, 06 Nov 2014 08:14:33 Jim Cheetham wrote:
> At this stage there is no embedded key, no "non-flashable" storage,
> therefore integrity checking needs you to check the signature of the full
> content of the flash storage itself, offline (i.e in the host OS startup
> scripts)
and even if you did, an intercepting 3rd party could pull the part from the
board and replace it with their own firmware and their own key. Our public key
is public, it's in the startup scripts, I'll probably put it on the web page
so it ends up in google's cache and on archive.org.etc
Paul
More information about the Discuss
mailing list