[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Cryptography] HSMs or Intel SGX? Which is harder to hack?
On Thu, Feb 16, 2017 at 8:57 AM, Bill Cox <waywardgeek AT gmail.com> wrote:
> If you wanted to store secrets so securely that you could never get them
> out, how would you do it? The secrets need to be usable for things like
> signing, but they should be unrecoverable. In particular, is it better to
> buy an HSM, or use Intel's SGX mode on some of its newer processors?
Don't use a general purpose device.
Though certainly dedicated HSM's have their list of hacks too.
Note that some regard SGX
as having already been broken
and btw ASLR just got beat up again
Esorics 2016 freebies