[coreboot] Is Goryachy's JTAG hack a chance for free firmware ?

Enrico Weigelt, metux IT consult info at metux.net
Thu Nov 30 23:38:45 CET 2017

On 30.11.2017 20:51, Igor Skochinsky wrote:

> The private key does not exist anywhere in the firmware or in the chip, only somewhere
> in Intel's HSM (I assume).

hmm, could there be an jtag access part to it ?

>   1) factor the public key (RSA-1024)
>   2) find a pair of keys where the pubkey hash matches one of those
>   accepted by the ME (the hash is SHA512 in the latest versions, was
>   SHA-1 before).

maybe we should ask our friends @google, whether they could spend
enough computing power to crack it ;-)


Enrico Weigelt, metux IT consult
Free software and Linux embedded engineering
info at metux.net -- +49-151-27565287

More information about the coreboot mailing list