rene_mobile’s avatarrene_mobile’s Twitter Archive—№ 4,656

  1. …in reply to @marcobrador
    @marcobrador @DaveKSecure Yes, that's exactly the distinction. Before the explicit specification of StrongBox, HW-backed could refer to various different ways of storing these keys where a Linux kernel compromise would not reveal them. The standard implementation is in a TEE. 1/2
    On twitter.com Twitter logo rene_mobile’s avatar ❤️ 1 Favorite Mood +1 🙂
    1. …in reply to @rene_mobile
      @marcobrador @DaveKSecure So HW-backed still allows various implementations (most commonly in TrustZone), but StrongBox is much more strictly defined as a discrete separate hardware and allows guarantees such as Insider Attack Resistance, but may be slower. Both can exist on a device in parallel. 2/2
      Permalink On twitter.com Twitter logo rene_mobile’s avatar ❤️ 2 Favorites Mood -1 🙁