Thierry Moreau <[email protected]> writes: >As a derived engineering strategy, wouldn't it be better to design a system >where the long-term secrets are kept in a "secure" co-processor,
Yes, of course, but that's asking the wrong question, what you need to ask is: As a product manufacturing strategy, should we put money into designing a system where the long-term secrets are kept in a "secure" co-processor, and the answer to that is almost always "no". Heck, even if you phrase it as "should we use the TrustZone capabilities that are *alreay built into the chip*" or "I'd love to use the integrated crypto, I'll do it at no cost as a design exercise" the answer has been "no". The extra stuff costs, not just in BOM and NRE terms but in terms of future compatibility, support, custom functionality, ... Peter. _______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
