Shuttleworth: ACPI, firmware and your security
Shuttleworth: ACPI, firmware and your security
[Security] Posted Mar 17, 2014 13:44 UTC (Mon) by corbet
Mark Shuttleworth argues against the use
of ACPI in "next-generation devices" on the basis that it is a huge
security hole. "If you read the catalogue of spy tools and digital
weaponry provided to us by Edward Snowden, you’ll see that firmware on your
device is the NSA’s best friend. Your biggest mistake might be to assume
that the NSA is the only institution abusing this position of trust – in
fact, it’s reasonable to assume that all firmware is a cesspool of
insecurity courtesy of incompetence of the worst degree from manufacturers,
and competence of the highest degree from a very wide range of such
agencies.
"