BringYourOwnIT.com

Information Security, Mobile Security and the Internet of Things

  • *** Top Posts ***
  • YouTube
  • Twitter
  • About
Posts Comments
  • RISC-V
  • IoT Security
  • Mobile Security
  • Information Security

Major home gateway flaw tells us it’s time for hardware-level security

May 25, 2015 1 Comment

This week, security researchers found a major vulnerability affecting scores of home and SOHO Wi-Fi router products from over 20 of the biggest names in the market. That such a widespread flaw could go unnoticed and that it went unpatched for so long despite the researchers’ best efforts is a sad reflection on the commercially minded “sales first, security second” attitude of the technology industry and of the gaping holes that exist in the supply chain.

But it also raises questions about whether, instead of focusing on security at the software and network level, we should instead start looking down to build protections into the silicon in order to reduce the attack surface area.

Read more of this post

Filed under IoT Security, Top Posts Tagged with Cesare Garlati, corporate data, flaw, hack, home gateway, login, password, patch, Security, virtualization, vulnerability, Wi-Fi router

About Cesare Garlati

Follow Cesare on YouTube

This is my personal blog about disruptive technology trends such as open source processors, the Internet of Things and cyber security. It's full of my reasoned opinions, some of which will turn out to be absolutely wrong. You should not rely on anything in this blog for any reason other than for amusement.

This blog occasionally quotes excerpts from other publications, in which case it is done under Fair Use. I despise copyright trolls and think the EFF is due for sainthood any day now.

I am an active member of RISC-V Foundation and prpl Foundation: some of my writing will appear here too if it's relevant. The opinions here are mine and mine alone, and are not representative of any professional organizations I belong to.

Comments are unmoderated. Say what's on your mind, be direct, speak the truth, etc., I'll try to keep all your comments ...

Happy reading!

Twitter @CesareGarlati

  • Appointed Chair of IoT World Developer Conference 2019 - ask me about the speaker's discount @prpl_foundation… twitter.com/i/web/status/1… posted 2 days ago
  • Electronic Design Product of The Week: Secure IoT Stack for RISC-V @hex_five @wolfSSL @risc_v @CABE_Atwell electronicdesign.com/embedded-revol… posted 3 days ago
  • The program for the RISC-V Workshop Zurich, 11 - 13 June 2019 has been published. See you there!… twitter.com/i/web/status/1… posted 1 week ago
  • TPM 2.0 Broken again: Extracting the clear-text key from a TPM 2.0 chip. Time for open source security: time for He… twitter.com/i/web/status/1… posted 1 month ago
  • @femtoduino @hex_five @wolfSSL @risc_v @embedded_world You could start with a Digilent ARTY A7-35T store.digilentinc.com/arty-a7-artix-… posted 1 month ago
Follow @CesareGarlati

Recent Posts

  • RISC-V Open Source Processors Ready For Prime Time
  • Maintaining Security in a Heterogeneous and Changing World
  • A New Zero-Trust Model for Securing Embedded Systems
  • Trusted Execution Environments – A System Design Perspective
  • User Mode Interrupts – A Must for Securing Embedded Systems
  • How to Secure a RISC-V Embedded System in Just 30 Minutes
  • How to Build a RISC-V System In Just 30 Minutes
  • RISC-V security: First piece of the puzzle falls into place
  • Hypervisors in Embedded Systems: Applications and Architectures
  • Physically Unclonable Functions – A new way to establish trust in silicon
Follow CesareGarlati on Twitter
View Cesare Garlati's profile on LinkedIn

Blog at WordPress.com.

Cancel