Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://mastodon.social/users/rbanffy/statuses/109406607748636617">Ricardo B�nffy (rbanffy@mastodon.social)'s status on Saturday, 26-Nov-2022 09:06:19 JST</a><a href="https://mastodon.social/@rbanffy" title="rbanffy@mastodon.social"><img src="https://gnusocial.jp/avatar/38860-48-20221125152900.webp" width="48" height="48" alt="Ricardo B�nffy" style="position: absolute; left: 0; top: 0;">Ricardo B�nffy</a><div><a href="https://gnusocial.net/notice/13269206" rel="in-reply-to">in reply to</a><ul><li></ul></div></section><article><p><a href="https://gnusocial.net/lxo">@lxo</a> I am not sure how the signature checking is done with Linux (2002 was a Windows CE machine) but they all have TPMs now and the BIOS can check the signature of a first stage boot loader since 2002. If you can boot arbitrary code *and not be detected*, then any voting machine is doomed.</p><p>You are focusing too much on the machines themselves and ignoring all the precautions around their storage and handling, the multiple tamper-proof seals, the chain of custody controls...</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/667415#notice-1075113">In conversation</a><time datetime="2022-11-26T09:06:19+09:00" title="Saturday, 26-Nov-2022 09:06:19 JST">Saturday, 26-Nov-2022 09:06:19 JST</time> <span>from <span><a href="https://mastodon.social/@rbanffy/109406607748636617" rel="external" title="Sent from mastodon.social via ActivityPub">mastodon.social</a></span></span><a href="https://mastodon.social/@rbanffy/109406607748636617">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Ricardo B�nffy (rbanffy@mastodon.social)'s status on Saturday, 26-Nov-2022 09:06:19 JSTRicardo B�nffy
in reply to
- Alexandre Oliva
@lxo I am not sure how the signature checking is done with Linux (2002 was a Windows CE machine) but they all have TPMs now and the BIOS can check the signature of a first stage boot loader since 2002. If you can boot arbitrary code *and not be detected*, then any voting machine is doomed.
You are focusing too much on the machines themselves and ignoring all the precautions around their storage and handling, the multiple tamper-proof seals, the chain of custody controls...
In conversationSaturday, 26-Nov-2022 09:06:19 JST from mastodon.socialpermalink

Public

Embed Notice

HTML Code

Corresponding Notice