[U-Boot] secure embedded linux system
Wolfgang Denk
wd at denx.de
Tue Jun 3 19:53:18 CEST 2014
Dear Simon,
In message <CAPnjgZ359pN2di57u2GQv5thOjayTMyXpkfz02HamqxvmdAMbw at mail.gmail.com> you wrote:
>
> > Please correct me if I'm wrong - but while this can protect against
> > software attacks, it cannot protect your system when someone has
> > physical access, say with a JTAG debugger, correct?
>
> That's correct - they could in that case just change the software in
> memory after it has loaded, perhaps involving some timing skill.
Or, even simpler, just halt the system and load aand run a version of
U-Boot without any security restictions^H^H^H^H^H^H^Hfeatures.
Best regards,
Wolfgang Denk
--
DENX Software Engineering GmbH, MD: Wolfgang Denk & Detlev Zundel
HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
Phone: (+49)-8142-66989-10 Fax: (+49)-8142-66989-80 Email: wd at denx.de
If it happens once, it's a bug.
If it happens twice, it's a feature.
If it happens more than twice, it's a design philosophy.
More information about the U-Boot
mailing list