Dailydave mailing list archives

Re: CSI 2008 Redux

From: Alexander Sotirov <alex () sotirov net>
Date: Sat, 22 Nov 2008 15:06:00 -0800

On Sat, Nov 22, 2008 at 08:03:28AM -0500, Dave Aitel wrote:

And I don't understand why you need a trusted computing chip if you decide
to trust your hypervisor in the first place. Trusting the hypervisor instead
of a public key on a chip from Dell makes a lot more sense. It's more
configurable in a user-friendly way, and less configurable in a RIAA/Big
Brother friendly way.


Because with a TPM chip you can verify (remotely) that the hypervisor that
booted on the machine is really the one you trust, and not a malicious or
backdoored one.

Alex

Attachment: _bin
Description:

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

CSI 2008 Redux Dave Aitel (Nov 22)
- Re: CSI 2008 Redux RB (Nov 23)
  - Re: CSI 2008 Redux Matthijs Koot (Nov 26)
    - Re: CSI 2008 Redux RB (Nov 27)
    - Re: CSI 2008 Redux Bruce Ediger (Nov 27)
    - Re: CSI 2008 Redux RB (Nov 28)
- Re: CSI 2008 Redux Alexander Sotirov (Nov 23)
  - Re: CSI 2008 Redux Joanna Rutkowska (Nov 23)
    - Re: CSI 2008 Redux Alexander Sotirov (Nov 24)