On Fri, Dec 13, 2013 at 2:32 AM, Jan-Frode Myklebust <janfr...@tanso.net> wrote: >> What enablement would be "complete" in 2013 for something that has been on >> the market a year and is already being phased out? > > A microcode update ?
I think that compromising microcode update keys is a much more interesting and believable prospect than compromising RDRAND. I've seen surprisingly little research around microcode update security. This post by Ben Hawkes is pretty interesting: http://inertiawar.com/microcode/ _______________________________________________ cryptography mailing list cryptography@randombit.net http://lists.randombit.net/mailman/listinfo/cryptography
