Profile

Cover photo
Michael Mosmann
Attended Burg Giebichenstein Kunsthochschule Halle
Lived in Lübeck
510 followers|280,092 views
AboutPostsPhotosVideosReviews

Stream

Michael Mosmann

Shared publicly  - 
 
 
This is the most demonically clever computer security attack I've seen in years. It's a fabrication-time attack: that is, it's an attack which can be performed by someone who has access to the microchip fabrication facility, and it lets them insert a nearly undetectable backdoor into the chips themselves. (If you're wondering who might want to do such a thing, think "state-level actors")

The attack starts with a chip design which has already been routed -- i.e., it's gone from a high-level design in terms of registers and data, to a low-level design in terms of gates and transistors, all the way to a physical layout of how the wires and silicon will be laid out. But instead of adding a chunk of new circuitry (which would take up space), or modifying existing circuitry significantly (which could be detected), it adds nothing more than a single logic gate in a piece of empty space.

When a wire next to this booby-trap gate flips from off to on, the electromagnetic fields it emits add a little bit of charge to a capacitor inside the gate. If it just happens once, that charge bleeds off, and nothing happens. But if that wire is flipped on and off rapidly, it accumulates in the capacitor until it passes a threshold -- at which point it triggers that gate, which flips a target flip-flop (switch) inside the chip from off to on.

If you pick a wire which normally doesn't flip on and off rapidly, and you target a vulnerable switch -- say, the switch between user and supervisor mode -- then you have a modification to the chip which is too tiny to notice, which is invisible to all known forms of detection, and if you know the correct magic incantation (in software) to flip that wire rapidly, will suddenly give you supervisor-mode access to the chip. (Supervisor mode is the mode the heart of the operating system runs in; in this mode, you have access to all the computer's memory, rather than just to your own application's)

The authors of this paper came up with the idea and built an actual microchip with such a backdoor in it, using the open-source OR1200 chip as their target. I don't know if I want to guess how many three-letter agencies have already had the same idea, or what fraction of chips in the wild already have such a backdoor in them.

As +Andreas Schou said in his share, "Okay. That's it. I give up. Security is impossible."
160 comments on original post
1
Add a comment...

Michael Mosmann

Shared publicly  - 
1
Add a comment...

Michael Mosmann

Shared publicly  - 
 
 
A Joyful Woman Laughs Hysterically After Putting on Her New Electronic Chewbacca Mask
Joyful mother and Star Wars fan Candace Payne recently treated herself on her birthday by purchasing an electronic Chewbacca mask at Kohls. Candace, who was super excited about her awesome new toy,…
View original post
1
Add a comment...

Michael Mosmann

Shared publicly  - 
 
 
Sehr gut. Die Vorsitzende des Zentralrats der Ex-Muslime lehnt den Versuch der AfD ab, sie für ihre politischen Zwecke zu instrumentalisieren. Ihre Begründung dafür ist sehr treffend und lesenswert.

Via +Bert Radke.
 ·  Translate
View original post
1
Add a comment...

Michael Mosmann

Shared publicly  - 
 
 
Werden die Deutschen immer dümer?
(Archiv)
 ·  Translate
Schlechtes Zeugnis für das Volk Goethes und Heines: Eine vom US-amerikanischen Geheimdienst NSA durchgeführte Analyse des deutschen Online-Schriftverkehrs förderte erhebliche Defizite auf dem Gebiet der Rechtschreibung zutage...
49 comments on original post
1
Add a comment...

Michael Mosmann

Shared publicly  - 
 
 
Die Maske im Herzen - (m)ein Abschied von den Hamburg Freezers

Die Hamburg Freezers sind Geschichte. Wie die sprichwörtliche Bombe schlug diese Meldung gestern hier im Familienleben ein. Wer hier regelmäßig mitliest, weiß, dass die Mannschaft für mich und meine beiden Kinder große Bedeutung hatte. Fast 5 Jahre sind…
 ·  Translate
View original post
1
Add a comment...

Michael Mosmann

Shared publicly  - 
1
Add a comment...

Michael Mosmann

Shared publicly  - 
 
 
The two Dart #io16  codelabs are now available online:

Dart + Angular2: Try the Tech Stack Powering the Next Generation of AdWordshttps://goo.gl/QYucP4

Build Cross-Platform Firebase Apps with Flutterhttps://goo.gl/Qd6qBL
Build the app shown in this screenshot! This code lab walks you through the process of building a simple web app with Dart and Angular 2. You don't need to know Dart, Angular, or web programming to complete this code lab, but we do assume you have some programming experience.
View original post
1
Add a comment...

Michael Mosmann

Shared publicly  - 
 
 
Netflix launches its own speed test service.

Very simple. Starts without the need to click anywhere. No ads.

https://fast.com/
5 comments on original post
1
Add a comment...

Michael Mosmann

Shared publicly  - 
 
 
Kalte Füße bekommen? (mre)

#TeslaCrypt  
 ·  Translate
Die Drahtzieher hinter TeslaCrypt haben den Stecker gezogen und den Master-Schlüssel in Umlauf gebracht: Opfer der Ransomware können nun ohne Lösegeld zu zahlen wieder Zugriff auf ihre Daten bekommen.
5 comments on original post
1
Add a comment...

Michael Mosmann

Shared publicly  - 
 
 
Menü auf-/zuklappen. heise online · c't · iX · Technology Review · Telepolis · Security · Netze · Open Source · Developer · c't Fotografie · Autos · Video · Mac & i · Jobs · Make · heise Preisvergleich · Veranstaltungen · heise shop ...
View original post
1
Add a comment...
People
In his circles
377 people
Have him in circles
510 people
Danie Victor, Laguerre Esquire's profile photo
Ayesa May Bensig's profile photo
Jochen Dorf's profile photo
Stefanie Harvey's profile photo
Sebastian Mrosek's profile photo
Hannes Haffke's profile photo
Klemens Linvers's profile photo
John Hart's profile photo
Martin Lormes's profile photo
Education
  • Burg Giebichenstein Kunsthochschule Halle
    Industriedesign, 1993 - 1999
Basic Information
Gender
Male
Work
Occupation
Software Engineer
Places
Map of the places this user has livedMap of the places this user has livedMap of the places this user has lived
Previously
Lübeck - Weißwasser - Halle/Saale - Idstein
Public - 7 months ago
reviewed 7 months ago
Sehr kompetent und sehr nett:)
Public - a year ago
reviewed a year ago
Großartige Blumen..
Public - 2 years ago
reviewed 2 years ago
Public - 2 years ago
reviewed 2 years ago
7 reviews
Map
Map
Map
Grossartig...
Public - 2 years ago
reviewed 2 years ago
Großartiges Essen
Public - 2 years ago
reviewed 2 years ago