logoalt Hacker News

RobotToastertoday at 1:47 AM4 repliesview on HN

>The problem is that "secure firmware" is a relativistic statement.

No it isn't, software formally verified to EAL7 is guaranteed to be secure.

Replies

rcxdudetoday at 2:56 PM

It's guaranteed to have more paperwork. Actually secure, maybe.

AnthonyMousetoday at 1:50 AM

I would like to introduce you to Spectre and Rowhammer.

show 1 reply
crotetoday at 6:29 AM

Sure, you formally verified that the software confirms to the specification, but how are you going to prove that the specification is correct?

kelnostoday at 6:03 AM

You're being sarcastic, right? The entire concept of "guaranteed to be secure" is a fantasy.

Even EAL7 can't guarantee anything. It can only say that the tools used for verification didn't find anything wrong. I'm not saying the tools are garbage, but the tools were made by humans, and humans are fallible.