On 2015-12-23 18:14, Dragos Ruiu wrote:
Sure you could spend the rest of your life checking all the firmware
and
trying to design separate specialized tools for the myriad of devices
in a
modern PC - and there is a lot more than your simple list, see the
presentation Mickey Shkatov and Jesse Michael from Intel did which
enumerated
some of the attack vectors
URL?
. The list is much longer than your short list - and
some of it is impossible to verify on today's hardware. Or you could
build a
diagnostic into your kernel and identify problems as a heuristic and
aid.
But I get it, it's hard, so you can throw up your hands and give up by
saying
that's not our problem, not an OS issue. However at the end of the day,
it is
a user issue, and a system security problem.
If you aren't paranoid enough to worry about it, then you've already
lost.
Cheers,
--dr
