Tag: Matthew Green

Limitations of Android N encryption

~ hucktech ~ Leave a comment

The limitations of Android N Encryption
Over the past few years pixelphonewe’ve heard more about smartphone encryption than, quite frankly, most of us expected to hear in a lifetime. We learned that proper encryption can slow down even sophisticated decryption attempts if done correctly. We’ve also learned that incorrect implementations can undo most of that security. In other words, phone encryption is an area where details matter. For the past few weeks I’ve been looking a bit at Android Nougat’s new file-based encryption to see how well they’ve addressed some of those details in their latest release. The answer, unfortunately, is that there’s still lots of work to do. In this post I’m going to talk about a bit of that. […]

The limitations of Android N Encryption

 

Intel SGX key concerns

~ hucktech ~ Leave a comment

Matthew Green has a thread on Twitter about concerns of Intel SGX attestation keys, including some text of how the SGX uesr docs differ from the SGX patent docs.

“Intel appears to have dropped the idea of securely provisioning SGX attestation keys. Now you have to contact Intel.”

I can’t claim to understand SGX well enough to give any useful comments on this post. ;-( I still need to spend time to learn SGX… I’m going to read that new SGX Explained document… 🙂