Re: Trusting GNAT for security software

[Andi Kleen <ak@muc.de>]

kilgallen@eisner.decus.org (Larry Kilgallen) writes:

> > Actually I think a university project, particularly one working with
> > openly available sources, would be extremely hard to subvert in the manner
> > that Marcus' paranoid thinking suggests. Many students had full access to
> > every bit of information throughtout the development.
> 
> But those involved in security work are supposed to think paranoid.
> If you don't have a list of possible attacks against which you do not
> have a provable defense, then you haven't thought hard enough.  AMD
> might have a special circuit inside their chips that recognizes code
> generated by GNAT and if it finds it is doing triple-DES squirrels
> away the key in a secret register.

Another funny thing. Most newer Intel chips (PPro+) are rumoured to have
loadable Microcode [SCO apparently once released a OS update that fixed
microcode bugs]. Now you could patch the microcode to detect some known
codes...

-Andi