If you can get the key, can't you sign whatever you want, in a way that the IC w... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		AnimalMuppet on March 5, 2020 \| parent \| context \| favorite \| on: Intel x86 Root of Trust: Loss of Trust If you can get the key, can't you sign whatever you want, in a way that the IC will validate it? It will still check that it's correctly signed, but doesn't that defeat the usefulness of it?

drewbug on March 5, 2020 [–]

the private key isn't on the chip, only the public key is

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact