A2: Very interesting concept. Edge and IoT typically means smaller and smaller form factors - but - with Moore's Law continuing, these TEE with hardware and chipsets are available even at the edge.
In fact, TEE has been around in ARM chips (and x86) for years, trouble is, many vendors don't make use of it because they cut corners to save on costs
Will we be able to defend against ALL new attack surfaces? well....CC will help...but I don't think you can ever say "All"
Agreed. Its a leap frogging problem... I make a defensive move and you make one better...
Agree, TEEs themselves don't address attacks like social engineering or physical theft. They must be paired with classic physical security appropaches.
@jckgld agreed. we see that changing over the coming months and quarters.
Yes, but we still will have legacy systems to deal with that are exposed, and that will remain with us for a long time...
A core problem with edge and IOT is computational power. A key aspect is that you want to remove security observer overhead. This is something that is close to my heart ;-)
More places to put up wall the better, right? But I do see your point about computational power. Intel/AMD/ARM should be solving that part of the equation - that's one of the things that keeps our industry advancing!
Chuckle, it is a problem I work on, check out Moving target Defense - we approach the problem differently.
Will do, Pete. Sounds interesting.