Re: Summary of the DebConf firmware discussion

To: debian-devel@lists.debian.org
Subject: Re: Summary of the DebConf firmware discussion
From: Paul Wise <pabs@debian.org>
Date: Sat, 29 Aug 2015 13:29:16 +0200
Message-id: <[🔎] CAKTje6HBPFYTpbsrc=CGTaPS9HVkL-8ULAHir0FoKJ0s4j7v9w@mail.gmail.com>
In-reply-to: <[🔎] b80107cf91e884614a3282c1ea1d08a7@hub.kern.lc>
References: <[🔎] 20150828153304.GA4863@einval.com> <[🔎] b80107cf91e884614a3282c1ea1d08a7@hub.kern.lc>

On Sat, Aug 29, 2015 at 9:48 AM, Philipp Kern wrote:

> freeness are distinct for the CPU and auxiliary PUs.

I get the feeling that the practical consequences of non-free software
running on auxiliary PUs can be worse than CPUs:

May include signature checks to prevent new code from running. For
CPUs we usually have ways to disable those checks.

Reverse engineering is harder due to custom/unknown ISAs and lack of
free infrastructure surrounding the proprietary code.

For preinstalled code it is much more likely that one cannot do
updates nor find out how to update it. Obviously not an issue for
upload-on-boot firmware.

Unknown amounts of storage for persistant malware to live in after
exploiting the firmware.

Harder to detect or restrict misbehaviour when it happens.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise

Reply to:

Follow-Ups:
- Re: Summary of the DebConf firmware discussion
  - From: Philipp Kern <pkern@debian.org>

References:
- Summary of the DebConf firmware discussion
  - From: Steve McIntyre <steve@einval.com>
- Re: Summary of the DebConf firmware discussion
  - From: Philipp Kern <pkern@debian.org>

Prev by Date: Re: Summary of the DebConf firmware discussion
Next by Date: Re: Summary of the DebConf firmware discussion
Previous by thread: Re: Summary of the DebConf firmware discussion
Next by thread: Re: Summary of the DebConf firmware discussion
Index(es):
- Date
- Thread