Linked by David Adams on Fri 2nd Mar 2012 16:03 UTC
Privacy, Security, Encryption When was the last time you reverse-engineered all the PCI devices on your motherboard?. . . Enters the game-changer: IOMMU (known as VT-d on Intel). With proper OS/VMM design, this technology can address the very problem of most of the hardware backdoors. A good example of a practical system that allows for that is Xen 3.3, which supports VT-d and allows you to move drivers into a separate, unprivileged driver domain(s). This way each PCI device can be limited to DMA only to the memory region occupied by its own driver.
Thread beginning with comment 509416
To read all comments associated with this story, please click here.
It's definitely a concern
by benali72 on Sat 3rd Mar 2012 04:35 UTC
benali72
Member since:
2008-05-03

Hardware security from backdoors has been a concern of mine for some time because if you travel to China (as every businessperson learns) you will find that your items are not secure. Many business travellers find malware planted on their machines and foreign companies often have very strict policies employees must follow to avoid loss of IP.

I'd like to buy a Lenovo laptop running Linux sometime but given this background....

Thanks for the link because my guess is there might come a time when suddenly everyone gets very interested in this topic.

Reply Score: 0

RE: It's definitely a concern
by Kivada on Sat 3rd Mar 2012 05:03 in reply to "It's definitely a concern"
Kivada Member since:
2010-07-07

Your best bet to get a laptop using CoreBoot to avoid the BIOS backdoors would be with begging the Linux only laptop companies like Zareason and System76. They would be the most likely to actually build specifically for maximum compatibility.

Reply Parent Score: 2

Lennie Member since:
2007-09-22

There are only very few laptops supported:

http://www.coreboot.org/Laptop

Reply Parent Score: 2

RE: It's definitely a concern
by zima on Fri 9th Mar 2012 23:27 in reply to "It's definitely a concern"
zima Member since:
2005-07-06

if you travel to China (as every businessperson learns) you will find that your items are not secure. [...]
I'd like to buy a Lenovo laptop running Linux sometime but given this background....


Your items are not secure anywhere, drop the silly China-bashing.

(me, I'd like to buy Intel or AMD based laptop, or any tech from UKUSA, but given such precedences... (pdf warning) "EUROPEAN PARLIAMENT [...] REPORT on the existence of a global system for the interception of private and commercial communications (ECHELON interception system)" http://www.europarl.europa.eu/sides/getDoc.do?pubRef=-//EP//NONSGML... )

Edited 2012-03-09 23:31 UTC

Reply Parent Score: 2