Potential band-aid for Meltdown
Eric McCorkle
eric at metricspace.net
Thu Jan 4 16:20:20 UTC 2018
On 01/04/2018 10:58, Mike Tancsa wrote:
> On 1/4/2018 10:27 AM, Eric McCorkle wrote:
>> I was thinking over meltdown mitigations this morning, and a thought
>> occurred to me (which falls in line with general ideas I've been pursuing)
>
> A pretty neat idea. But in terms of keeping crypto keys safe, why not
> something behind a pkcs11 interface (e.g. eToken) or tpm ?
If you have them (and trust the vendors), sure. My thinking here is for
folks with laptops or commodity hardware, who want some measure of
security while waiting for fixed hardware to come out.
More information about the freebsd-security
mailing list