Slashdot Mirror

← Back to Stories (view on slashdot.org)

Xerox PARC Creates Self-Destructing Chip

Posted by samzenpus on from the here-today-gone-tomorrow dept.

angry tapir writes: Engineers at Xerox PARC have developed a chip that will self-destruct upon command, providing a potentially revolutionary tool for high-security applications. The chip, developed as part of DARPA's vanishing programmable resources project, could be used to store data such as encryption keys and, on command, shatter into thousands of pieces so small, reconstruction is impossible.

65 of 96 comments (clear)

  1. From the halt-and-catch-fire dept. by Anonymous Coward · · Score: 2, Funny

    from the here-today-gone-tomorrow dept.

    From the halt-and-catch-fire dept. surely?

    1. Re:From the halt-and-catch-fire dept. by ThaumaTechnician · · Score: 2

      Not new, PARC just discovered the long-existing, well-known(?) CE (Chip Explode) pin.

    2. Re:From the halt-and-catch-fire dept. by UnknownSoldier · · Score: 4, Funny

      Nah, that's the last status message sent:

      ERROR_CPU_ON_FIRE

      or the more traditional:

        "CPU#0: Possible thermal failure (CPU on fire?)

      I can't wait till they put one in a printer. Then this error message will become a reality:

      ERROR_PRINTER_ON_FIRE

      Or I should say

      lp0 on fire

    3. Re:From the halt-and-catch-fire dept. by wonkey_monkey · · Score: 1

      Like anyone who works at Slashdot would get that.

      --
      systemd is Roko's Basilisk.
    4. Re:From the halt-and-catch-fire dept. by davester666 · · Score: 1

      Yeah, this is a "your device is now out of warranty. please purchase a new one." thing.

      --
      Sleep your way to a whiter smile...date a dentist!
    5. Re:From the halt-and-catch-fire dept. by meta-monkey · · Score: 1

      HTTP status code 451 should really be "server on fire."

      --
      We don't have a state-run media we have a media-run state.
  2. Impossible? by Anonymous Coward · · Score: 2, Funny

    Challenge accepted?

    1. Re:Impossible? by fuzzyfuzzyfungus · · Score: 4, Interesting

      I don't know how reconstructable these things will be(I wouldn't underestimate patience, or machine vision, when reassembling lots of broken bits; but if the destruction of the circuit disrupts floating gates or other such delicate structures used for semiconductor data storage there may be nothing to read even if you rebuild the entire thing); but I'd be very curious to see how they propose to safeguard the circuitry that is used to initiate destruction.

      The demo involved resistive heating sufficient to mechanically stress the glass into failure. That sounds exactly like the sort of mechanism where attacking the chip's supply of power(either undervolting it, putting it on a tightly limited constant-current supply, or both) might allow you to keep the chip's logic functions operational; but keep the heater from being able to destroy the glass. Depending on the sensitivity of the circuit layer, one could also slowly and evenly heat the entire package, to increase the power required to induce enough localized thermal expansion to cause catastrophic cracking.

      It reminds me of the old fight between satellite and cable 'conditional access' system manufacturers and pirates: you had the really early conditional access cards with separate contacts for the higher voltages needed to reprogram the EEPROM; so people covered those with tape to make the cards read only. Then they moved to onboard charge pumps, and people moved to sabotaging those without damaging the read circuitry. And so forth.

      This seems like a similar situation. I don't doubt the ability of stressed glass to shatter violently(semi-related; but fun, "Prince Rupert Drops" are a great demonstration of this); but if you want to turn that into a security mechanism, you need to protect the glass-shatterer componenents, and the sensors that trigger them, from sabotage or deception for the mechanism to be useful in practice. It is an advance over a normal silicon wafer with a small explosive charge, and probably a lot more legal for consumer goods; but you still need to know when to shatter the glass, and make sure that the attacker can't remove your ability to do so without triggering the failsafe.

    2. Re:Impossible? by JaredOfEuropa · · Score: 2

      (semi-related; but fun, "Prince Rupert Drops" are a great demonstration of this

      That is just freaky... (Here's a nice video including some high FPS shots of one breaking)

      --
      If construction was anything like programming, an incorrectly fitted lock would bring down the entire building...
    3. Re:Impossible? by fuzzyfuzzyfungus · · Score: 4, Informative

      Incidentally, if you want to play with some, they can be made at home more easily than one would expect: Getting a nice big one, as in the video you link to, and getting reliable results, is tricky without a proper glassworking apparatus; but you can make small ones with a basic hardware store blowtorch and some cheap 'lampworking' glass rods(not borosilicate, that has a higher melting point and deals with thermal stress better, typically a virtue but not for this application); I don't have a specific recommended vendor but 'lampwork rod' should bring up numerous options.

      You pretty much just blowtorch the end of the rod until it melts and drips into a bucket of water. In my tests, either my technique or my materials sucked enough that I couldn't get above ~10% success rate; but a pound or so of lampwork rod is cheap, so it didn't matter too much. And it is weird to interact with a piece of glass that you can't break with a sledgehammer; but which tears itself apart in the blink of an eye if you snip its tail. Wear your damn safety goggles; but good clean fun.

    4. Re:Impossible? by mlts · · Score: 1

      I was wondering that myself, since I was thinking of the fracture patterns in Prince Rupert Drops, and how an attacker could mount a DoS, similar to the old mainframe systems that permanently locked accounts after three wrong guesses [1].

      There is also the impact/shock resistant element. Would the vibrations of car eventually cause enough microfractures to get the chip to shatter?

      Of course, I'm guessing the use for this chip will be in applications where security is far more important than recoverability. The old and tired example of a nuclear weapon PAL comes to mind where it is better for the device to fail secure than to be operational. Another place where this would come in handy would be a cryptographic token or a HSM, which helps guarantee that the key stored remains secure, and that any of the tamper mechanisms dispatches the stored key.

      However, will it beat the blackhats? Right now, satellite piracy is at 0%, so each iteration may not be the thing that solves the problem, but it keeps raising the bar from hobbyists to tiger teams, to large companies and nations. A good example of this are how each generation of consoles have evolved [2]. This won't stop everyone, but it will raise the bar in various applications, if only just because it assures that a remote self destruct is a physical destruction of media.

      [1]: Those were "fun", especially when you had a former cow-orker who got moved to another department who liked locking people's IDs just for grins, prompting constant calls to the central switchboard to have the account reset (which meant you got a temporary password which you had to have force changed to a permanent PW that the system gives you.)

      [2]: Ironic that for many years we were promised lower prices on games if people would stop pirating. However, with a 0% piracy rate on modern consoles, one pays noticably more for a game than they did (even adjusted for inflation) in the past, especially factoring in DLC (which usually is add-on content which should have been included in the game anyway.)

    5. Re:Impossible? by flopsquad · · Score: 1

      Challenge accepted?

      Hey if you can drop it into a black hole and still get the information out later, this should be a breeze!

      --
      Nothing posted to /. has ever been legal advice, including this.
    6. Re:Impossible? by jittles · · Score: 2

      It is an advance over a normal silicon wafer with a small explosive charge, and probably a lot more legal for consumer goods; but you still need to know when to shatter the glass, and make sure that the attacker can't remove your ability to do so without triggering the failsafe.

      When it comes to military applications, they will likely continue to use both an explosive charge and this technology. When an attack helicopter is downed, for instance, the pilots hit the master destruct button which blows up the PCMCIA card that contains encryption keys, maps and other sensitive data. Then the DART comes out (Downed Aircraft Rescue Team). If they can't save or salvage the aircraft, they pull out their WP grenades and attach them to key areas of the airframe and watch the fireworks show. So they already use double redundancy when it comes to destroying the data. The first go around is to make sure the data is destroyed if the aircraft is captured before salvage attempts are made. The second to prevent anyone from salvaging anything in the case of a total loss.

    7. Re:Impossible? by LordHighExecutioner · · Score: 1

      They did it about ten years ago. We had a Xerox copier that self-distructed, one night. Unfortunately it also ignited our main building.

  3. Denial of Service by Jamu · · Score: 1

    That's going to make DoS attacks very effective.

    --
    Who ordered that?
  4. So then... by Anonymous Coward · · Score: 1

    Halt and Catch Fire?

    1. Re:So then... by stooo · · Score: 1

      Yea. The innovation here is they don't use fire...
      (explosive or exothermic melting security electronics exists since a long time but is dangerous...)

      --
      aaaaaaa
  5. Annnnnd.... by rtkluttz · · Score: 2

    The only companies interested in it will be consumer electronics companies just waiting for the next big thing to lock consumers out of their own shit.

    --
    Digital is, by definition, imperfect. Analog is the way to go.
    1. Re:Annnnnd.... by Buggz · · Score: 1

      Those companies, and the Impossible Mission Force.

    2. Re:Annnnnd.... by AmiMoJo · · Score: 2

      Similar chips are already used in things like smart cards and POS terminals, where crypto keys need to be protected. The physical design causes the key to be wiped if the chip is tampered with. This is a new level of paranoia.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    3. Re:Annnnnd.... by Chrisq · · Score: 1

      The only companies interested in it will be consumer electronics companies just waiting for the next big thing to lock consumers out of their own shit.

      I was thinking the same thing. Set a timer to warranty period plus a day....

    4. Re:Annnnnd.... by mlts · · Score: 1

      At first, I doubted this, but was reminded of Samsung Knox, and the eFuses which permanently blow on a device (no way . Thankfully the latest rooting/bootloader mods don't cause Knox to trip, but it is there, and likely will only get worse in future revs of the phone.

    5. Re:Annnnnd.... by mlts · · Score: 1

      Looks like a chunk of my message got eaten. There is no known way to reset the Knox value back to 0x0, which allows the phone to use Samsung's pay system.

    6. Re:Annnnnd.... by mlts · · Score: 1

      Those devices either wipe a value, or perhaps blow eFuses to disable circuits permanently.

      It is a new level of paranoia, but having the ability to physically destroy a chip without resorting to electrical arcing, shorts, explosives, or other means which can cause big problems where intrinsic safety is needed, is a true innovation.

      I can see this quite useful in a few consumer products:

      1: An IronKey-like hardware encrypting USB flash drive, with a clear window showing the chip. If the chip is shattered, it will be obvious.

      2: A physical tamper-resistant seal. The chip could use a fiber optic cable wrapped around an object, and if it detects a break, it shatters.

      3: A replacement for a "Tip & Tell" sensor. The large crate, if tipped over will have the chip shatter, and if the chip is part of a RFID system, the damaged crate can be easily located.

      4: Part of a TPM chip. If a machine is physically moved outside of a geofence, the chip shatters, making recovery of the main hard disk key impossible (well, until one types in the recovery code.)

      5: Part of a SSD that is for securing sensitive data. If the SSD's driver doesn't send a watchdog pulse in "x" amount of time, shatter the chip.

      In general, a "seal" is the ideal type of use for this chip.

    7. Re:Annnnnd.... by I'm+just+joshin · · Score: 1

      Thanks Buggz! If I only had mod points...

    8. Re:Annnnnd.... by Anne+Thwacks · · Score: 1
      I was using Xilinx FPGAs for that in the 1980's. Program the chip, remove connection to mother ship. Press "go".

      If mission aborts, details of hardware vanish on loss of power, and battery life is limited ...

      Of course, I cannot tell you what the application was...

      --
      Sent from my ASR33 using ASCII
  6. So... by fuzzyfuzzyfungus · · Score: 4, Insightful

    Coming soon to a toner cartridge near you?

  7. Hail to forced..... by dablow · · Score: 1, Insightful

    .....obsolescence.

    Now companies will be able to impose the upgrade cycle to all of us for every device known to man (including cars, fridges, etc.)

    Ownership of anything is now dead......

    1. Re:Hail to forced..... by iTrawl · · Score: 3, Interesting

      If proven to be used for enforced obsolescence I'm sure they're in for a bankrupting class action. You break my stuff, you pay me to buy a new one, plus moral damages for the pain you've caused me, regardless of how you did it.

      Yet nobody seems to have proven even the existence of "warranty fuses" (ones that make your equipment break just after warranty expires)...

      --
      "Everybody's naked underneath" -- The Doctor
    2. Re:Hail to forced..... by dablow · · Score: 1

      As far as I know, there is no way to build a fuse to will break at exactly the time you want it to, without it looking suspicious. Besides replacing a fuse in most cases is trivial.

      And they can easily avoid class action suit by including in the licensing agreement that you do not own the device, you are renting it for a certain amount of time and the the real owner is the producer and they can, if they so chose, to burn the device at any time for any reason and you agree to it (you know like those credit card contracts that basically say they have the right to change wtv they want any time they want but you cant.)

    3. Re:Hail to forced..... by Anonymous Coward · · Score: 1

      Yet nobody seems to have proven even the existence of "warranty fuses" (ones that make your equipment break just after warranty expires)...

      That's because they're looking at the correlation backwards (a very common problem).
      Products are stress-tested so manufacturers learn the approximate durability distribution. From those, they can calculate the warranty so that it ends two standard deviations before the mean time to failure. If I remember my distribution math correctly, this results in the free warranty covering about 2.5% of product failures. If repair costs are cheap enough, they might pick a line near (but slightly before) one standard distribution before the mean time to failure (~16% of product failures will be covered).

      The tighter the manufacturing tolerances, the smaller the failure curve. The difference between the deviation points for a very precisely manufactured device may be as little as month, and the warranty will end just before that month of extreme failure.

      There is an added complication with products that tend to either have immediate failures or extremely long functional lives (most consumer electronics for an example). With products like that, the initial warranty is primarily to catch the bad products that got past testing and maintain customer appreciation. Extended warranties on products like these are practically pure profit.

    4. Re:Hail to forced..... by kyrsjo · · Score: 1

      Replacing a fuse when you suspect that's the problem, and you're one of the few who isn't scared for taking a screwdriver to a piece of electronics.

      Most consumers? Meh, printer's broke, warranty went out last week. Time to buy a new one, now with even more useless buttons and blinky lights!

    5. Re:Hail to forced..... by stooo · · Score: 1

      Use a Laser Saber, Luke...
      Uh, no, wrong movie.
      Use a Laser Printer, Luke....

      --
      aaaaaaa
    6. Re:Hail to forced..... by ArhcAngel · · Score: 2

      While purely anecdotal I had the displeasure of supporting a large bank call center which used IBM 15" CRT displays. When I say large we had at least two thousand monitors of this make. Almost on cue they would fail within a couple of months after the warranty expired. Since it seemed a bit suspicious I did some research and discovered I was not alone in my suspicions. It was determined there was in fact a single resistor in one of the main circuits that would burn out almost as if it was designed to last only so long.

      --
      "A person is smart. People are dumb, panicky dangerous animals and you know it." - K
    7. Re:Hail to forced..... by suutar · · Score: 1

      Silly. You don't buy a new printer because the warranty is up, you buy it because you used up the ink in the last one and it's cheaper than replacement cartridges. If you reach the warranty period you're not printing enough to bother; go to Kinko's :)

    8. Re:Hail to forced..... by ChrisMaple · · Score: 1

      For roughly 50 years, perhaps much longer, there have been electrical devices designed to pass a given number of Ampere-hours and then open-circuit. They're electro-chemical based: an electrode gives off ions until it's exhausted.

      --
      Contribute to civilization: ari.aynrand.org/donate
  8. Terminology by 605dave · · Score: 1

    "reconstruction is impossible."

    After watching things for awhile I would steer away from saying something's impossible. Highly unlikely, next-to-impossible. Something like that. But never underestimate the ability for technology to evolve to solve "impossible" problems. Or even finding a critical mistake (hello AM passwords!) that makes it not so impossible after all.

    --
    Be kind, for everyone you meet is fighting a difficult battle. - Plato
    1. Re:Terminology by suutar · · Score: 1

      sure it can; it just takes work (which increases entropy somewhere else). Give it a few years (okay, a couple decades) and I bet someone will have an atom-level deposition device that can take a burnt match and air and place the atoms for an unburnt match (not fast, mind you...)

  9. So, they invented... by zarmanto · · Score: 1

    ... chips with integrated plastic explosives? As in, standard Mission Impossible/Inspector Gadget type stuff. If there was actually a market for such devices in the real world, wouldn't it have already been fulfilled by now?

    Or... are we just now learning about this, because certain "spy-craft" methods have recently been declassified, or something of that nature? Hmmmmmm.....

    1. Re:So, they invented... by tsqr · · Score: 1

      ... chips with integrated plastic explosives? As in, standard Mission Impossible/Inspector Gadget type stuff. If there was actually a market for such devices in the real world, wouldn't it have already been fulfilled by now?

      There actually is a market for such devices in the real world. Anti-tamper implementations are required by DoD for the protection of "Critical Technologies" and "Critical Program Information" in order to prevent (well, really to make it as hard/expensive/time-consuming as practicable) an adversary from reverse-engineer a weapons system so it can be copied or countered. Implementations are invariably classified Secret.

      Anti-tamper approaches that involve hardware can range from placing crucial software code in FPGAs to physically destroying crucial components through explosions or large jolts of electricity. "What we will do is destroy the microcircuit before they get to the algorithms" says Tarantine of White Electronic Designs.

      "It can be a physical destruct with protective coating; it can be a serpentine mesh where they actually break the current going to the mesh; it could be a diode that triggers on X-ray, so X-raying the device causes an event to happen. I can have a diode that will count the radiation and once it reaches a certain level may use a pyrotechnic event to blow the chip up." (http://www.militaryaerospace.com/articles/2010/04/anti-tamper-technologies-seek-to-keep-critical-military-systems-data-in-the-right-hands.html)

    2. Re:So, they invented... by zarmanto · · Score: 1

      There actually is a market for such devices in the real world. ...

      While you may be correct on that minor point, you skipped over my primary point entirely: If the government had a need for such things, then the tech almost certainly already exists in some form, as the idea has itself existed for decades in fictional representations. And we're not talking about Star Trek futuristic technologies here, either; it wouldn't be terribly difficult to literally pack small amounts of plastic explosives alongside (or even inside) the microchips in those critical technologies that you mentioned. So why did the PARC researchers need to investigate this topic in the first place? Unless they're just trying to build a better mouse trap...

    3. Re:So, they invented... by towermac · · Score: 1

      "why did the PARC researchers need to investigate this topic in the first place? "

      Plausible deniability.

    4. Re:So, they invented... by zarmanto · · Score: 1

      Plausible deniability.

      Touche'.

    5. Re:So, they invented... by tsqr · · Score: 1

      If the government had a need for such things, then the tech almost certainly already exists in some form, as the idea has itself existed for decades in fictional representations. And we're not talking about Star Trek futuristic technologies here, either; it wouldn't be terribly difficult to literally pack small amounts of plastic explosives alongside (or even inside) the microchips in those critical technologies that you mentioned. So why did the PARC researchers need to investigate this topic in the first place? Unless they're just trying to build a better mouse trap...

      If that was your major point, you're right -- I missed it. Pretty sure it was the references to Mission Impossible and Professor Gadget that led me astray.

      Suppliers in the anti-tamper arena are always trying to build a better mouse trap. This is one of those areas where developers are always trying to stay one step ahead of the "enemy". Government V&V authorities are notoriously biased against approaches and implementations that have been used in the past, especially for protection of technology improvement in things like complex radar and data processing systems. Obtaining approval for an anti-tamper design and implementation is a years-long proposition, and the more similarities a design has to prior art, the more difficult it is to get approval. And yeah, putting explosive charges inside chips has been around for long enough to be considered old hat. I suspect PARC didn't reveal very much at all in their description of what they've been up to; in fact it wouldn't surprise me at all if most of it was misdirection. As I said before, it's a highly sensitive area, and anything more in-depth than a top-level, hazy description would actually render the product unusable for security reasons.

  10. Re:Seems Familiar by tepples · · Score: 1

    I'll skip the 1960 pop culture reference, Mr. Phelps.

    I know why you wanna hate me: because hate is all the world has even seen lately.

  11. broken but not stirred = sand castle by raymorris · · Score: 1

    > Entropy cannot be reversed

    Everybody who has ever assembled a jigsaw puzzle begs to differ. Unlight something? You can burn hydrogen and oxygen to make water, then electrically reverse that process as many times as you want. Reversing entropy requires energy.

    In this particular case, cracking the glass into many pieces, without stirring those pieces, creates something like a fully-assembled jigsaw puzzle. If the pieces of glass are really small, they're called sand. An object composed of many pieces of sand would be a sand castle- the structure is still intact until the pieces are stirred.

    1. Re:broken but not stirred = sand castle by Anonymous Coward · · Score: 1

      There are things that denature: you can't uncool an egg, you can't unmelt butter, etc.

    2. Re:broken but not stirred = sand castle by wonkey_monkey · · Score: 1

      You can burn hydrogen and oxygen to make water, then electrically reverse that process as many times as you want.

      Yes, but you can't tell what shape a chunk of ice was before it was melted.

      --
      systemd is Roko's Basilisk.
    3. Re:broken but not stirred = sand castle by SScorpio · · Score: 1

      I'm not sure about uncooking and egg, but you can unboil them.

      http://www.livescience.com/49610-scientists-unboil-egg.html

  12. Based on toner cartridge designs? by sinij · · Score: 1

    Is this technology is based on their toner cartridge designs? Because every time I try to print, they seem to self-destruct on command.

  13. Cue the music by dingleberrie · · Score: 1

    Diddle-little-liddle-little
    dun dun dun-DUN, dun dun DUN-dun, dun dun dun-DUN, dun dun DUN-dun
    Na na naaaaaa, na-na naaaaaaa, na-na naaaaaaa, na-nuh

  14. Good thing, yes? by Severus+Snape · · Score: 1

    One of the reasons why computer security has turned in to a cat and mouse game - that quite frankly we are losing, is the computer architecture model we use for everything hasn't really changed. A physical separation of user space and kernel space in to two systems, then ideas like this become rather useful.

  15. And alternatively by gweihir · · Score: 1

    Use a low-power microcontroller like an MPS430, power from lithium-battery, keep keys in RAM and invert them every minute or so. You can wipe that MPS430 in a few microseconds on command and without using much energy.

    Seriously, this is a stunt, not anything new or special.

    --
    Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
  16. Falling into enemy hands by DigiShaman · · Score: 1

    So you've got fighter jet or spy plane flying over enemy or contested lands; I'm guessing there would be a capacitance changed and rigged to a dead-mans switch? Unless there's a proper shutdown, certain equipment shatters their ICs to prevent reverse engineering via X-Ray technology. Meaning, no gate / logic layout to discern?

    --
    Life is not for the lazy.
  17. Congrats - you've invented the Sony Vaio! by xxxJonBoyxxx · · Score: 2

    >> The chip could self-destruct on command

    Congratulations! You've invented the Sony Vaio!
    http://www.techhive.com/articl...

  18. Not for use by us commoners by eth1 · · Score: 1

    Any non-famous/non-rich private individual using this tech would just be thrown in jail for destruction of evidence.

  19. Re:Xerox by stooo · · Score: 1

    Yeah, they will use it as screen cover glass, and it will break just before touching ground...

    --
    aaaaaaa
  20. Alpha-Omega by BrendaEM · · Score: 1

    Isn't it ironic that the Xerox ushered the both the beginning of the personal computer, and it's end.

    --
    https://www.youtube.com/c/BrendaEM
  21. Surely we are beyond this... by Flytrap · · Score: 1

    Surely we are beyond this... don't we already have self destructing software?

    Making a self destructing chip, will not destroy the software and data on the electronic device powering and commanding the chip (chips need, power, storage, memory and other i/o stuff to be useful)

  22. dd if=/dev/zero of=/dev/keystore by iamacat · · Score: 1

    There is no practical need for theatrics, just a controller that supports reliable overwrite of data. If permanent hardware alteration is needed, there is a mainstream, inexpensive e-fuse technology.

    Stressed glass chip destruction could be triggered unintentionally. Since you are a secret agent, you might drop things or travel to hot places. Wouldn't want to lose all your secret photos just because you left your phone on car dash or something.

  23. A new app for the market - post mortum wiping! by modi123 · · Score: 1

    It's a simple plan.. your iWatch monitors your biometrics, right? When you die it kicks off an app to wipe all your browser history, and the special chip/drive where you store your porn gets shattered into a million pieces. No more embarrassed children, spouses, or friends when your dirty dirty secrets come to life after yours has left.

  24. Half the comments here are based on a fallacy. by mmell · · Score: 1
    People here are assuming that this is intended to be a consumer technology. It isn't.

    First, it takes a specific, intentional, not free step to implement this. Unless the manufacturer of a given device thinks security will be important enough to its customers to warrant a self-destruct they're not going to incorporate this. It's not like hardware manufacturers are thinking "Oh what the hell - consumers won't mind if our widget costs more than the competition's, let's build in an auto destruct and use Majel Barrett-Roddenberry's voice" or even "we can blow 'em up the day after the warranty runs out and defy everyone to prove our product isn't just plain crappy."

    Second, it isn't fully tested yet. They're incorporating stresses into a component whose durability must now be examined - as previously noted, some highly specialized applications might benefit from a "failure before compromise" behavior, but most won't. Will these things spontaneously shatter five years after manufacture? Can this be triggered by anything other than the designed mechanism? Be a shame to have these things fail every eleven years because of sunspots, after all.

    Finally, this is not the only tamper-resistant technology ever created. I can recall many items of military hardware which incorporate operationally similar safeguards, and it deserves remembering that the people who want to learn military secrets often have the resources to do ridiculous things like manually reassembling a three-dimensional puzzle consisting of thousands of nearly microscopic pieces. Combine this with our existing technologies and you end up with an incredibly effective tool . . . that's tool, not solution. Like anything else of security (and especially military security) multiple layers are the only possible approach. Multi-layered security includes physical security, information security, and resource security. This technology could serve as part of a tamper-deterrent system.

  25. I am pretty sure... by tlambert · · Score: 1

    I am pretty sure this technology is already in use in Comcast and AT&T U-verse routers.

  26. Al Qaeda is probably drooling over this... by knorthern+knight · · Score: 1

    The year is 2020. A massive arctic high sits over North America on a very cold January day. An Al Quaeda operative sends a command from his PC to a botnet which activates multiple zero-day "sleeper" trojans that have been waiting for the command. PC's, printers, and various other machinery in offices and electric power plants and water pumping stations and telephone offices fail.

    A second command is sent that hijacks satellite downlinks for GM Onstar and similar systems. They can shut down the car via satellite if it's reported stolen. In the middle of rush hour, traffic grinds to a halt, as the shutdown code is activated en masse. You have millions of motorists stuck on the roads in bitterly freezing weather. +1 if the system can be programmed to lock all car doors, and trap the motorists inside.

    Another command is sent out that cranks "internet of things" furnaces and stoves to max power and locks them there. Fires break out all over. Fire departments are unable to respond. Even if their trucks don't have Onstar tech, the roads are so clogged with stalled cars that they can't get to any fires.

    Civilization breaks down as distribution chains collapse due to non-functioning equipment. Millions die of cold and starvation in the following weeks. Martial law is declared. Somewhere, in the middle-East, a bunch of Mullahs are laughing their butts off.

    --

    I'm not repeating myself
    I'm an X window user; I'm an ex-Windows user
  27. this already exists by Jookey · · Score: 1

    Old eproms stored there data with a series of fuses. When first programming the chip fuses would be selectively burnt out to store the program data. A program that burnt out the remaining fuses would brick the chip. Modern eproms have limited read write cycles. A program that rewrote the chips over and over again could brick a chip in a matter of seconds.