[Cryptography] Intel Management Engine pwnd
Dave Horsfall
dave at horsfall.org
Thu Nov 30 02:01:25 EST 2017
On Wed, 29 Nov 2017, Ryan Carboni wrote:
> Well, at the very least it has to maintain the time...
If you're going to quote, could you at least quote properly? I wrote
that, not you...
> Don't [be] ludicrous, the US government funds orbital satellites with
> atomic clocks on them. (bafflingly, the iphone compass app requires a
> barometer to determine altitude when GPS is three-dimensional) Probably
> better off with the clock being reset when unplugged, it has horrible
> accuracy anyway, worse than quartz wristwatches.
Should I have used a "sarcasm" tag? And anyway, the altitude as shown by
GPS is horribly inaccurate; take a look if you don't believe me. There's
a reason why the later iPads use a barometer, and it ain't to forecast the
weather.
In the time it took for me to write that paragraph, I was anywhere between
sea level and 30m ASL, with the horizontal displacement no more than a few
metres...
> If one is worried about spoofed ntp packets after the time is reset, to
> allow revoked certificates being used, then one is facing a far more
> elaborate attack then typically practiced.
I wasn't referring to NTP packets.
--
Dave Horsfall DTM (VK2KFU) "Those who don't understand security will suffer."
More information about the cryptography
mailing list