Once general-purpose computers are no longer available, that’s the end of small Linux distributions such as this one.
None of the following quotes seem to be a legal barrier.
…these quotes do not imply that security researchers are prohibited from or scared to release malware artifacts such as disassembles due to fear of copyright laws. Specifically not in the case of Pegasus. Malware samples are shared and analyzed in public all the time.
This isn’t easy for sure. You’d probably need to be able to at least:
- understand/write for example the following documents:
- verified-boot/measured_boot.md at master · 3mdeb/verified-boot · GitHub
- verified-boot/verified_boot_app_spec.md at master · 3mdeb/verified-boot · GitHub
- verified-boot/verified_boot_main.md at master · 3mdeb/verified-boot · GitHub
- verified-boot/threat-model.md at master · 3mdeb/verified-boot · GitHub
- Verified Boot
- understand code flows
- basic programming
Might be some sort of remote attestation. Not easy and maybe even impossible to come up with a perfect implementation. Refer to the same wiki page Verified Boot.
That might be like Intel ME on steroids.
I may also not be the best idea to come up with more and more complex hardware designs. They’ll forget (or “forget”?) to disable some debugging feature. (Apple iOS - Malicious Backdoor or Debugging Feature? The Debate Over Operation Triangulation) → Too much complexity, etc.
As for end-user, desktop computers and notebooks, there does not seem to be any hardware vendors on Intel/AMD64 interested to provide such functionality. This might be due to lack of customer interest. The x86 market is shrinking.
On Intel/AMD64 we can be glad if we get at least OpenSIL. That might be the next realistic step after Sovereign Boot.
And if we’re really fortunate, maybe one day we’ll have Open Source Hardware. I’d prefer that any day about any proprietary co-processor.
The security co-processor design is to be considered in 10 to 20 years. That’s far away from anything realistic we’ll be working on anytime soon.
Due to lack of hardware vendor interest… And due to no decent performance fully Open Source Hardware RISC-V being available yet… And due to Kicksecure not being a hardware development project… This is too far fetched for now.