Ok, I&#39;m not going to get too far into this, because I&#39;m no real security expert, but:<br><br><div class="gmail_quote">On Jan 30, 2008 11:40 AM, Philipp Marek &lt;<a href="mailto:philipp@marek.priv.at">philipp@marek.priv.at</a>&gt; wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div class="Ih2E3d">&gt; &gt; - Using some operating system unencrypted - boot from a CD.<br>
&gt; &gt; - Protect the boot order - reset the CMOS.<br>&gt; &gt; - Store important information in the CMOS.<br>&gt; Neither is this.<br></div>No, this should illustrate my thoughts ... so you can tell me *where* I&#39;m<br>
wrong.<br><div class="Ih2E3d"><br>&gt; Coreboot will unconditionally launch its payload, so your interest should go<br>&gt; there.<br></div>That&#39;s ok. It&#39;s a &quot;normal&quot; OS that has to be started.<br><div class="Ih2E3d">
<br>&gt; Maybe you are also caught up too much in the conventional boot<br>&gt; process;<br></div>That&#39;s possible, and that&#39;s why I&#39;m asking here!<br>I don&#39;t know that many ways to boot a machine - use ROM; use a BIOS and<br>
another medium; and that&#39;s it.<br><br>Is there some easy solution I don&#39;t see?<br><br>And just storing everything in ROM is a bit ... costly, and doesn&#39;t help<br>against *getting* the secrets.<br>Using some cheap substitute like flash memory only moves the problem from one<br>
location to another ...</blockquote><div><br><br>I think what he was trying to say is that if you give coreboot, say, a FILO payload set up to boot from some medium, with no support for any other medium, then there&#39;s no switch you can throw, short of flashing a new bios onto the board. You can do the same thing with a linux kernel, use that to unconditionally kexec to a specific medium, or with large enough flash, you could store the entire kernel in flash.<br>
<br></div></div>-Corey<br>