Bruce Kornfeld5
A2: Very interesting concept. Edge and IoT typically means smaller and smaller form factors - but - with Moore's Law continuing, these TEE with hardware and chipsets are available even at the edge.
Jack Gold
In fact, TEE has been around in ARM chips (and x86) for years, trouble is, many vendors don't make use of it because they cut corners to save on costs
Bruce Kornfeld
Will we be able to defend against ALL new attack surfaces? well....CC will help...but I don't think you can ever say "All"
Jack Gold
Agreed. Its a leap frogging problem... I make a defensive move and you make one better...
(edited)
Dave Thaler
Agree, TEEs themselves don't address attacks like social engineering or physical theft. They must be paired with classic physical security appropaches.
Bruce Kornfeld
@jckgld agreed. we see that changing over the coming months and quarters.
Jack Gold
Yes, but we still will have legacy systems to deal with that are exposed, and that will remain with us for a long time...
Pete Jarvis
A core problem with edge and IOT is computational power. A key aspect is that you want to remove security observer overhead. This is something that is close to my heart ;-)
Bruce Kornfeld
More places to put up wall the better, right? But I do see your point about computational power. Intel/AMD/ARM should be solving that part of the equation - that's one of the things that keeps our industry advancing!
Pete Jarvis
Chuckle, it is a problem I work on, check out Moving target Defense - we approach the problem differently.
Bruce Kornfeld
Will do, Pete. Sounds interesting.