Hacker Read top | best | new | newcomments | leaders | about | bookmarklet login

People know keys, people eventually leak keys. It always happened.


view as:

The point is that you can't leak a key from a HSM.

On the one hand that is the goal, on the other hand the applicable standard seems to be FIPS 140, which counts products with a flawless security history like OpenSSL amongst its long time adherents. In other words there is a non zero chance that the modules will just spit out the key if you even look at them funny.

Legal | privacy