[Discuss] Favorite OSHW Linux computers?

Josh Datko jbd at cryptotronix.com
Wed Feb 4 17:56:56 UTC 2015


On Wed, 2015-02-04 at 12:43 -0500, Andrew Malcolm Stanley wrote:
Drew
> 
> I am curious about something.
> I am doing some reading on secure (if such a thing exists) operating
system variants like tails right now.
> it appears that there are also vulnerability vectors in hardware, such
as the USB attacks that bunny has exposed.
> Is there a variant OSHW computer that is designed specifically to
provide maximal HW security when operating with a secure OS??


On the Hardware side, ARM has TrustZone which provides some of what you
are talking about. Actually, it does nothing against USB attacks, which
are very difficult to defend against, but does provide a trusted
container. However, most SoC vendors when they implement TrustZone go a
proprietary route AFAIK.


> I am wondering if there is a similiar argument to be made on the
hardware side.
> what do you think?
> 
The lowRisc project is one of the few Open Source Silicon projects that
seems to be building in Security. They are proposing a tagged memory
architecture to help prevent against memory attacks:
http://hackaday.com/2014/12/21/risc-tagged-memory-and-minion-cores/

I certainly support the argument that hardware security needs to be more
open, but I think the only people who can afford to do this are projects
like lowRisc. Most chip manufacturers, even with security chip
manufactures, seek to protect their IP with proprietary technology.




More information about the discuss mailing list