Am Mo., 9. Dez. 2019 um 19:02 Uhr schrieb Seth Rosenblatt < seth@the-parallax.com>:
I wasn't able to find the security@ alias, otherwise would've emailed y'all there. I didn't hear back before publication but happy to make any corrections if needed. I'm also willing to include a statement from Coreboot if you want to send one over.
Sadly there's little content in your article about what claims were made and which parts of these claims applies to coreboot. The figure about the ARM trusted boot flow is copied out of the old paper you linked that makes no mention of coreboot. It seems impossible to find the slides or even a recording of the talks that you covered in the article. Apart from a few tweets and your article, that entire thing might as well not exist, even though the conference was apparently over a month ago.
All that makes it hard to give any clear statement on the subject matter.
Regards, Patrick