Email: Password: Remember Me | Create Account (Free)

Back to Subject List

Old thread has been locked -- no new posts accepted in this thread
Jan Waclawek
11/25/05 00:39
Read: 737 times

#104149 - manufacturer
Responding to: Ian Bell's previous message
Ian Bell said:
I mentioned it because they [the manufacturer] are the one other party you can be sure is interested in stopping it. Any information you can give them will help keep your product secure and make the manufacturer gratefull to you.

Not at all.

For example, for the Atmel AT89Cxx vulnerability in the pre-'98 chips, I am almost convinced it's a backdoor from the manufacturer.

Moreover, many of the manufacturer have "secure" microcontroller lines (mainly used for chipcards) which claim to have additional security features. They come at additional cost maybe, but I am sure many of the "small" users are willing to pay for it. But it has a downside, too - if the "secure" chips get widespread, first the manufacturer would need tu circulate information which now makes available only to the "big customer" against an NDA, second they will certainly draw more and more attention from the "lock breakers" which is something the manufacturer wants to avoid.

So what do they do? They come out with a "less secure" scheme, to make both the "small user" and lock breaker happy - first has an impression he is secure, the second has the impression he can unlock anything.

Maybe I am watching too many hollywood movies?

Jan Waclawek

List of 29 messages in thread
code lock breakers      Erik Malund      11/21/05 06:39      
   I doubt      Jan Waclawek      11/21/05 07:00      
      I said so, and I mean it in the proper c      Erik Malund      11/21/05 07:32      
         this won't help      Jan Waclawek      11/21/05 09:53      
   Manufacturer      Ian Bell      11/21/05 07:57      
       would do that if breaking specific chip      Erik Malund      11/21/05 08:01      
      vulnerabilities      Jan Waclawek      11/21/05 09:48      
         I am sure they do know      Ian Bell      11/24/05 15:26      
            Out of spec      Jerson Fernandes      11/24/05 22:19      
            manufacturer      Jan Waclawek      11/25/05 00:39      
               Maybe...      Robert Revens      11/25/05 08:49      
                  Danger Will Robinson?      Ian Bell      11/27/05 08:36      
   There might be a way      Bert Van Den Berg      11/23/05 23:54      
      DMCA      Craig Steiner      11/24/05 00:02      
         Mean MCU hardware locks are broken ?      Anil Gupta      11/24/05 01:58      
            Look here      Robert Revens      11/24/05 02:05      
               But no body knows how it is done      Anil Gupta      11/24/05 02:36      
                  This link shows an example      Chris Kelly      11/24/05 05:59      
                  lockbreakers      Jan Waclawek      11/25/05 00:46      
         US Federal Anti-Hacking Laws      Bert Van Den Berg      11/24/05 07:35      
         USA Only      Ian Bell      11/27/05 08:38      
         Exactly      Steve M. Taylor      11/27/05 10:26      
            smart cards      Terry Lingle      11/27/05 12:46      
               DSS cracking      Steve M. Taylor      11/27/05 13:42      
                  TV decoder      Bert Van Den Berg      11/27/05 23:31      
                     Deported ?      Steve M. Taylor      11/28/05 09:24      
                        Nah, I like the Coast Guard      Bert Van Den Berg      11/28/05 10:49      
                           swings and roundabouts      Steve M. Taylor      11/28/05 11:58      
                  Black Friday ?      Terry Lingle      11/28/05 00:29      

Back to Subject List