Mastodawn

Nobody works harder at alumni development than Tony Chen -- sometimes I see him on LinkedIn touring a lab, sometimes in person at a soccer game -- here I saw him in a brewpub that used to be in the Student Agencies Building meeting my friend who was back for reunion

#photo #photography #portrait #cornell #tonychen

Show thread

Kevin Karhan

Dec 26, 2024

@hon1nbo @foone yeah, but all these things would essentially necessitate a fundamentally incompatible #Fork of the #USB standard, creating #costs, #fragmentation and lessen the likelyhood of success.

Not to mention it'll require significant investments in #UserAwareness, #Training and would still have some issues...

I gues a sort-of "Secure HID Port" that mandates proper authentification and does full #E2EE from the Keyboard Matrix / Pointing Device controller up is an option, but you'd have to expect state-sponsored attackers willing to do "Kamikaze" Hacks...

There's like a long talk by #TonyChen from #Microsoft explaining how they secured the #XboxOne.

#TLDW: It requires custom silicon and a hard root of trust…

And as we saw with #GoldenKeyBoot all it takes is a single #leak of a #PrivateKey and that entire system is fucked!

https://infosec.space/@kkarhan/113716442182953660

How a Mini drill tool defeated security on the Xbox 360 | MVG

YouTube