Re: Can't have the Chinese take over from US spying, old chap
Is vulnerability testing the same as counter espionage testing/analysis ???. I would have thought the latter required detailed investigation of the hardware from a physical perspective. If the product uses home grown/designed silicon, then detailed physical analysis is a must ?
Depends. If the silicon's to be installed in a basement guarded by leopards, perhaps not. Otherwise it's assuming TBTB's pen/vulnerability testing teams are as good, if not better than academic/commercial or private testers. So kind of an infinite monkey scenario.. there'd be far more non-PTB eyeballs looking for bugs, and perhaps the only advantages the official ones have would be an ability to lean on vendors for help if they needed to.
I'm curious exactly what you'd need to be really sure and spot stuff like a carefully crafted packet on a public interface sneakily switching a device into pwn mode.. Which still happens more often than it should. And you'd have to retest whenever there's a firmware or system update.