[U-Boot] U-book and GPLv3? (fwd)

Mike Frysinger vapier at gentoo.org
Wed Jun 24 19:41:06 CEST 2009


On Wednesday 24 June 2009 12:45:38 Detlev Zundel wrote:
> > It is secure because only authenticated code is allowed to be
> > executed, thus another step to avoid piracy, hacking of conditional
> > access systems etc.
>
> Running only authenticated code does *not* ensure security, no matter
> how much this is wished for.
>
> But no matter, I now understand that "security" seems to mean "data can
> only be handled in the way intended by the owners of the data" which is
> a different concept to me.

you ignored my simple straightforward example where both authenticity and 
security is provided.  cpu only loads signed u-boot -- authenticity.  u-boot 
only loads encrypted signed binaries -- security and authenticity.  since the 
binaries stay inside of the CPU, for all practical (and then some) purposes, 
the decrypted binary will never be discovered from this system.

and unless you're lumping data and code together under the term "data", that 
part is also incorrect.
-mike
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: This is a digitally signed message part.
Url : http://lists.denx.de/pipermail/u-boot/attachments/20090624/f909a27e/attachment.pgp 


More information about the U-Boot mailing list