Mastodon

0 posts0 participants0 posts today

TechHelpKB.com 📚Chromebooks are about to get a lot more secure. Google has begun production of the first commercially available open-source security chip designed to provide transparency & trust in hardware security. <a href="https://mastodon.social/tags/google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#google</a> <a href="https://mastodon.social/tags/chromebook" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#chromebook</a> <a href="https://mastodon.social/tags/opentitan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opentitan</a> <a href="https://mastodon.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://www.androidpolice.com/google-opentitan-rot-chromebook/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.androidpolice.com/google-opentitan-rot-chromebook/</a>

AnisseFPGA-based CI is also run on every repository change request to the OpenTitan repository.It takes a lot of maintenance to keep the stack of FPGAs working.This is expensive hardware, the latest ones cost up to $10k for each board.<a href="https://social.treehouse.systems/tags/OSFC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OSFC</a> <a href="https://social.treehouse.systems/tags/OSFC2024" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OSFC2024</a> <a href="https://social.treehouse.systems/tags/OpenTitan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenTitan</a>

AnisseJames Wainwright is now presenting "Open source all the way down: developing firmware in parallel with open silicon".In the context of the OpenTitan open source root-of-trust project, the hardware, its tests and firmware are all developed in lockstep in a monorepo.<a href="https://social.treehouse.systems/tags/OSFC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OSFC</a> <a href="https://social.treehouse.systems/tags/OSFC2024" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OSFC2024</a> <a href="https://social.treehouse.systems/tags/OpenTitan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenTitan</a>

cynicalsecurity :cm_2:P. Nasal and S. Mangard, "SCRAMBLE-CFI: Mitigating Fault-Induced Control-Flow Attacks on OpenTitan"¹ Secure elements physically exposed to adversaries are frequently targeted by fault attacks. These attacks can be utilized to hijack the control-flow of software allowing the attacker to bypass security measures, extract sensitive data, or gain full code execution. In this paper, we systematically analyze the threat vector of fault-induced control-flow manipulations on the open-source OpenTitan secure element. Our thorough analysis reveals that current countermeasures of this chip either induce large area overheads or still cannot prevent the attacker from exploiting the identified threats. In this context, we introduce SCRAMBLE-CFI, an encryption-based control-flow integrity scheme utilizing existing hardware features of OpenTitan. SCRAMBLE-CFI confines, with minimal hardware overhead, the impact of fault-induced control-flow attacks by encrypting each function with a different encryption tweak at load-time. At runtime, code only can be successfully decrypted when the correct decryption tweak is active. We open-source our hardware changes and release our LLVM toolchain automatically protecting programs. Our analysis shows that SCRAMBLE-CFI complementarily enhances security guarantees of OpenTitan with a negligible hardware overhead of less than 3.97 % and a runtime overhead of 7.02 % for the Embench-IoT benchmarks.<a href="https://bsd.network/tags/ResearchPapers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ResearchPapers</a> <a href="https://bsd.network/tags/arXiv" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#arXiv</a> <a href="https://bsd.network/tags/OpenTitan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenTitan</a> <a href="https://bsd.network/tags/FaultInducedControlFlowAttacks" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FaultInducedControlFlowAttacks</a> <a href="https://bsd.network/tags/AttackMitigation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AttackMitigation</a> <a href="https://bsd.network/tags/IoT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IoT</a> __ ¹ <a href="https://arxiv.org/abs/2303.03711" rel="nofollow noopener noreferrer" target="_blank">https://arxiv.org/abs/2303.03711</a>

Mac<a href="https://mastodon.social/tags/KataOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#KataOS</a> und Project <a href="https://mastodon.social/tags/Sparrow" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Sparrow</a>: <a href="https://mastodon.social/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> legt "beweisbar sicheres" Betriebssystem offen <a href="https://www.golem.de/news/kata-os-und-project-sparrow-google-legt-beweisbar-sicheres-betriebssystem-offen-2210-168988.html" rel="nofollow noopener noreferrer" target="_blank">https://www.golem.de/news/kata-os-und-project-sparrow-google-legt-beweisbar-sicheres-betriebssystem-offen-2210-168988.html</a><a href="https://mastodon.social/tags/Rust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Rust</a> <a href="https://mastodon.social/tags/OpenTitan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenTitan</a>

CK's Technology News<a href="https://mastodon.social/tags/OpenTitan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenTitan</a>: The first open source reference design for <a href="https://mastodon.social/tags/root" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#root</a> of <a href="https://mastodon.social/tags/trust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#trust</a> <a href="https://mastodon.social/tags/chips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#chips</a>Website <a href="https://opentitan.org/" rel="nofollow noopener noreferrer" target="_blank">https://opentitan.org/</a>

Aurélien Grosdidier ✅Google’s new <a href="https://mastodon.social/tags/chip" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#chip</a> design protects the <a href="https://mastodon.social/tags/cloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloud</a> where it’s most vulnerable | <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://mastodon.social/tags/google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#google</a> <a href="https://mastodon.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://mastodon.social/tags/opentitan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opentitan</a> <a href="https://mastodon.social/tags/titan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#titan</a> <a href="https://www.technologyreview.com/s/614675/googles-new-chip-protects-the-cloud-where-its-most-vulnerable/" rel="nofollow noopener noreferrer" target="_blank">https://www.technologyreview.com/s/614675/googles-new-chip-protects-the-cloud-where-its-most-vulnerable/</a>

Dr. Roy Schestowitz (罗伊)<a class="hashtag" href="https://pleroma.site/tag/opentitan" rel="nofollow noopener noreferrer" target="_blank">#OpenTitan</a> <a href="http://www.tuxmachines.org/node/130190" rel="nofollow noopener noreferrer" target="_blank">http://www.tuxmachines.org/node/130190</a>

Gregori Fabre<a href="https://mamot.fr/tags/opentitan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opentitan</a> : un projet communautaire pour des puces de confiance <a href="https://mamot.fr/tags/silicon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#silicon</a> <a href="https://www.silicon.fr/opentitan-puces-confiance-325211.html" rel="nofollow noopener noreferrer" target="_blank">https://www.silicon.fr/opentitan-puces-confiance-325211.html</a>

Ecologia Digital<a href="https://ecodigital.social/tags/opentitan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenTitan</a>: "the project aims to lift the fog of proprietary machine code and clandestine manufacturing that makes any <a href="https://ecodigital.social/tags/processor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#processor</a> difficult to fully trust. It's managed and directed by the <a href="https://ecodigital.social/tags/opensourcehardware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensourcehardware</a> nonprofit lowRISC CIC." <a href="https://www.wired.com/story/open-titan-open-source-secure-enclave/" rel="nofollow noopener noreferrer" target="_blank">https://www.wired.com/story/open-titan-open-source-secure-enclave/</a>

Recent searches

Search options

Administered by:

Server stats:

#opentitan