Microsoft has been doing code-signing for 15 years or so and so far as I know their keys have never been compromised. (That hasn't stopped CAs from issuing certificates that other keys belong to 'Microsoft Corporation'. But that only fools humans relying on string comparison, not firmware that's checking a list.)
Power management, mobile and firmware developer on Linux. Security developer at Aurora. Ex-biologist. mjg59 on Twitter. Content here should not be interpreted as the opinion of my employer. Also on Mastodon.
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
Re: Complexity
Date: 2012-05-31 08:00 pm (UTC)