Friday, 2020-09-18

packetupIf anyone is willing to give advice please DM.00:13
packetupAlso what are all your thoughts on
lkclhi packetup, welcome10:37
lkclwell, i was studying RISC-V for about 2 years so know quite a lot about it, libre-soc is using OpenPOWER ISA i am still happy to answer10:39
lkclyou may be interested to know that NLnet is sponsoring bunnie huang on his "betrusted" project10:41
cesar[m]1Trezor is a USB bitcoin hadware wallet that also sports two-factor authentication, and also stores PGP and SSH keys. See:
cesar[m]1Hardware design available at:
lkclah, that's just the PCB, cesar[m]111:03
lkclwhat packetup is saying (i believe) is, how can you trust a proprietary *processor*?11:04
lkcli had some people contact me in 2018 about this, the fact that FIPS-approved algorithms are inherently untrustable *and* the implementations are entirely opaque11:05
lkclyet people are entrusting literally TRILLIONS in cryptocurrencies to unverifiable hardware!11:05
cesar[m]1Well, being based on an ARM Cortex-M class microcontroller, the STM32F, it should at least be free of proprietary bootloaders and drivers.11:09
cesar[m]1The GCC-based toolchain and software development kit also seem to be libre.11:10
cesar[m]1Lacking a MMU, it won't run Linux, tought.11:13
cesar[m]1I agree that verification at hardware level is desirable.11:16
lkclyeyyeh, i really like the STM32F series.  all of them are supported extremely well by libopencm3 which is also excellent11:42
lkclST's own libraries for the STM32 series are a bit... naff :)  they're orientated around windows (yukk).  libopencm3 is a bit more "sane"11:43
cesar[m]1By the way, at work, there is a STM32F microcontroller in the x-ray experiment, on the stratospheric balloon.12:05
cesar[m]1To generate code to configure peripherals and pins, I use the ST32CubeMX software, which do seems proprietary (but does run under Linux).12:08
* lkcl waves to jhol13:57
lkcljhol: thx14:13
packetuplkcl: thank you for those links! Our project lead was actually brainstorming about using some sort of randomization to protect the hardware implementation.16:56
packetupWith storage in SRAM with a removable battery.16:58
packetupWe're looking into a SoC utilizing but any any libre processor would work.17:01
lkcloh yeh picorv32 is pretty neat, and small, it's a good choice, as long as you're not looking for high-performance18:06
lkclrandomisation is *really* tricky to do well.  make damn f****g sure you find a decent cryptographer who can advise you there ok?18:07
packetupYes, they're a long time contributor to GnuPG18:08
lkclah superb.18:09
pangelo[m]hello, apropos betrusted, this just popped up in my mailbox:
lkclpacketup: the choice of TNRG there is worth investigating.  bunnie tends to know his stuff22:12
packetupYes, that's one design requirement of course.22:19
packetupI will reach out to him.22:39
packetupAny idea how I could reach him?22:48

Generated by 2.17.1 by Marius Gedminas - find it at!