defending against evil in all layers of hardware and software

Ivan Krstić krstic at
Tue Apr 29 05:18:11 EDT 2008

On Apr 28, 2008, at 12:58 PM, John Denker wrote:
> Of course we should insist on an open-source boot ROM code:
> The boot ROM should check the pgp signature of each PCI card's
> BIOS code before letting it get control.  And then it should
> check the pgp signature of the operating system before booting
> it.  I don't know of any machine that actually does this

The OLPC XO-1 laptop has an open-source bootloader (Open Firmware)  
which checks the operating system signature before passing control to  

Ivan Krstić <krstic at> |
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at

More information about the cryptography mailing list