The "signature" in the microcode update has not the same
meaning as within crypto. For intel chips it has 31bits and basically
contains a revision number. The requirements for the BIOS for
checking microcode updates are in short: check the crc and ensure
that older revisions cant replace new ones
nce monitor somewhere in it that you can truly
trust.
- Alex
That we agree on!
/ji
- Original Message -
From: "John Ioannidis" <[EMAIL PROTECTED]>
To: Cryptography
Subject: Just update the microcode (was: Re: defending against
evil in all layers of hardware and soft
makes designing a good security system a real
challenge. You need a reference monitor somewhere in it that you can truly
trust.
- Alex
> - Original Message -
> From: "John Ioannidis" <[EMAIL PROTECTED]>
> To: Cryptography
> Subject: Just update the micr
Intel and AMD processors can have new microcode loaded to them, and this
is usually done by the BIOS. Presumably there is some asymmetric crypto
involved with the processor doing the signature validation.
A major power that makes a good fraction of the world's laptops and
desktops (and hence
