* Posts by wizodd

1 post • joined 6 Oct 2018

Decoding the Chinese Super Micro super spy-chip super-scandal: What do we know – and who is telling the truth?


Truly irrelevant whether or not the story is true--it is a warning that we must heed, that our electronic civilization is subject to manipulation by others.

We tend to delay security until we are burned, partially due to cost considerations, and partially plain failure to understand that a risk still exists even if no cases have yet occurred.

Billions of dollars worth of software has been written offshore by programmers not restricted by law from stealing it and perfectly positioned to make unknown modifications. Such code changes are seldom easily spotted if at all. Similarly forged chips can contain code and unknown functions.

It is long past time we abandoned passwords and 4-digit PINs for anything of any real importance, and time to recognize and build protections into our sourcing systems against spyware hard and soft.

If we await our first "big" loss, the cost might destroy us.


Biting the hand that feeds IT © 1998–2020