On 29 May 2014 04:58, Matej Kovacic <[email protected]> wrote: > Is that tool useful for preventing Evil Maid Attack? With Evil Maid > Attack it is possible to install a rootkit on the system partition of a > mobile phone, this rootkit could be automatically loaded via special > tailored (evil) mobile USB charger.
There's so much going on in a phone that while I think dm-verity is a good step, it's not enough to rely on for evil maid protection. I'd rather have it than not have it - but until we have a better understanding of how the baseband is sandboxed from the phone OS - I think that'd be a good avenue for attack. And there are others - dm-verity couldn't detect a trojan placed in the ARM Trustzone or on a secure element (like the SIM). So I'd encourage folks to use dm-verity, and build on it - but recognize it's got limitations. My 2 cents. -tom _______________________________________________ Guardian-dev mailing list Post: [email protected] List info: https://lists.mayfirst.org/mailman/listinfo/guardian-dev To Unsubscribe Send email to: [email protected] Or visit: https://lists.mayfirst.org/mailman/options/guardian-dev/archive%40mail-archive.com You are subscribed as: [email protected]
