Posts
4602Following
317Followers
478OpenPGP: 3AB05486C7752FE1
Jarkko Sakkinen
jarkkoE.g. Signal claims to use Intel SGX. How do I verify that for my benefit? There really should be some sort of universal standard for attestation of SGX/TDX/SNP workloads.
I mean the workload itself can be with a proprietary technology but attestation should be standardised. With that we could perhaps have something like certification chain that goes from data center up to the web browser.
I think confidential computing today is broken because of this and for most somewhat useless, expect in the white papers speaking about military grade security and all that :-) The hardware is expensive, attestation is broken and even the terminology is broken. In normal crypto-terminology confidentiality does not guarantee integrity. Better name would be thus trusted computing and somewhat easier to put into your mouth too. I've hated that term since I first heard about it.
2
0
0
Jarkko Sakkinen
jarkkoSome audio hardware uses #WebMIDI for this but this would widen the scope.
I'm not sure tho how the access would be provided to the device if the USB stack was compiled in wasm.
0
0
1
Another thing I learned is that ARMv8 has special opcodes for JavaScript :D Fixing a horrible programming language with hardware features is pretty interesting.
1
0
0
1
0
0
1
0
1
repeated
The Last Psion | Alex
thelastpsion@bitbang.socialSide note: The article in that last toot is by the Castle Game Engine project, a game engine entirely in #ObjectPascal.
At first glance, their docs look to be very clearly written and approachable.
Also, they're written in #AsciiDoc, stored in a Git repo and turned into a static site. And you all know I love me a bit of AsciiDoc.
Thumbs up from me!
0
1
1
Jarkko Sakkinen
jarkkoMore information:
https://ieeexplore.ieee.org/document/9660345
2
0
1
Jarkko Sakkinen
jarkko
1
0
0
repeated
Ludovic :Firefox: :FreeBSD:
usul@piaille.frComing to fosdem this year? you use #gnupg? Want to sign your key? Good news, I'm organizing a key signing party (https://en.wikipedia.org/wiki/Key_signing_party).
details are at https://ludovic.hirlimann.net/2024/01/key-signing-party-at-fosdem-2024.html
please boost or share, so people come and attend.
#privacy #email #security #gpg
0
2
1
repeated
K. Ryabitsev 🍁
monsieuricon
5
5
21
Jarkko Sakkinen
jarkkoThe de-facto response from Rust application for OOM is panic.
#rustlang
0
0
2
0
0
0
This rapidness might work for user space but especially for core kernel features feels a bit brutal to say the least...
I'm actually just opening my views because in LKML I see "yes Rust" and "please no Rust" so trying to address "in-between-but-doubtful-of-Rust" camp's concerns :-)
1
0
0
@alerque Actually (and this is literal fact) before I did one day cargo install bat, I had an alias for along the lines of cat <file> | vim -R - sort of thing so it was literally just way to shortcut that and not much else.
The way Rust community looks at a “change” is sort of “this would nicer way to do this”. The way kernel community looks at a “change” is more like “we have this alarming situation that we need to absolutely deal with right here an right now or data centers or whatnot will be doomed”.
And even my fav language C is in the end for me an opcode generator, not more or less. Rust is yet another opcode generator with static analysis built-in. I just vote for the tech first and totally disregard “language level” kind of merits. What works the stuff that goes best to the cores best WFM me best in the end :-)
1
0
0
Jarkko Sakkinen
jarkko
0
0
2
repeated
it actually does the opposite: it improves compatibility because e.g. the same prompt translates from something like bash to something like powershell.
1
0
0