2026-06-03T23:25:58Z https://njump.me hotatenobatayaki https://njump.me/npub1rn7yrt0tfaqn90d0w5a9pcm2u38gyz59erjn6nn2xujcs4mz79yqy9ppsp https://cdn.famichiki.jp/accounts/avatars/113/151/277/734/632/340/original/1ed95eef32aaa243.png https://cdn.famichiki.jp/accounts/avatars/113/151/277/734/632/340/original/1ed95eef32aaa243.png https://njump.me/nevent1qqst3w7k24f7zux3ejk7z4h7ryuernt55hh0y5j4xvgs2rjjumfc9cqzyqw0csddad85zv4a4a6n558rdtjyaqs2shyw202wdgmjtzzhvtc5swz5m4x In reply to <a href='/nevent1qqsy2rrcufapzx49et4t79235l86y2k7wulnx5dpwvqtrjve7p4ydzsf4xu8c'>nevent1q…xu8c</a><br/>_________________________<br/><br/>instead of thinking that CPU are not trustworthy, you should think that the untrustworthy side of CPU can be verified against other CPU. If you don&#39;t trust CPU A doing 1+1=2, try it on CPU B. Granted there&#39;s different architecture and stuff but you can cross compile. 2025-04-03T08:13:28Z https://njump.me/nevent1qqsy2rrcufapzx49et4t79235l86y2k7wulnx5dpwvqtrjve7p4ydzszyqw0csddad85zv4a4a6n558rdtjyaqs2shyw202wdgmjtzzhvtc5sf47eka In reply to <a href='/nevent1qqs97g6hehxtpcnjw9ccmgrk4jj67stm3yuylnazsjd5qvsx2g5zv5gp8qvlt'>nevent1q…qvlt</a><br/>_________________________<br/><br/>oh and you don&#39;t trust cpu manufacturers. What makes you trust fpga manufacturers? Their compiler are way more complicated and less open source than normal cpus.<br/><br/>Not to mention FPGAs are the home of IP (intelectual properties) blocks. Some fpga contain hdmi module that you can turn on easily but is otherwise a proprietary blob of silicon. 2025-04-03T08:11:36Z https://njump.me/nevent1qqs98gjcch209phzwd6xswvteqthryt0wtf0pkrxn8gl97vwawaygwszyqw0csddad85zv4a4a6n558rdtjyaqs2shyw202wdgmjtzzhvtc5shauvyt In reply to <a href='/nevent1qqszepp2jjyk9mltl786r48t35w5wgj0tv2nknexepw3emjen54yg9ssf0t9v'>nevent1q…0t9v</a><br/>_________________________<br/><br/>for timing analysis such as comparing password (hashes) there&#39;s constant time comparison, such is used by bcrypt for checking password hash without revealing password hash through timing sidechannel.<br/><br/>But depends on usecase. What are you thinking about? 2025-04-03T05:36:12Z https://njump.me/nevent1qqsv8x5uzpegakkchd7cx37g6cf6ffx287ep5gdmzh3mcud965khhygzyqw0csddad85zv4a4a6n558rdtjyaqs2shyw202wdgmjtzzhvtc5spkq56d In reply to <a href='/nevent1qqsqkntdznx7tpp5t3ed9hxe8z5ghmaalvn6gvzdhd0qem0su29fq9cvpneh4'>nevent1q…neh4</a><br/>_________________________<br/><br/>answered that.<br/><br/>The unsatisfying answer is just, anything logical is possible with an idealized FPGA. Real FPGA has logic element constraints (not so many of those gates to do stuffs), you can&#39;t implement current CPU with a single FPGA. Maybe if you have a few of them it&#39;d work..<br/>There&#39;s also the bandwidth and time limitation. And there&#39;s cost.<br/><br/>FPGA does not scale well for large application. 2025-04-03T05:12:15Z https://njump.me/nevent1qqsv9g2pavgecq0yx899fjw3ky3vhm3yr6xqjpht6l94rdeqwjs0wfgzyqw0csddad85zv4a4a6n558rdtjyaqs2shyw202wdgmjtzzhvtc5sfakwu3 In reply to <a href='/nevent1qqsw69qz70jzxmsl0juj3jw3q547hnq0f79ne84fsag6pxgx7p9sveslskmaa'>nevent1q…kmaa</a><br/>_________________________<br/><br/>possible yes. Practical not.<br/><br/>We&#39;re talking about fpga that either reprograms itself or fpga that contains multiple implementation of the same thing in order to mask its operation from side channels. FPGAs have a limited (quite limited) number of logic blocks to use for whatever you&#39;re making. 2025-04-03T05:09:36Z https://njump.me/nevent1qqsgnqu0c0u4humylqasuyauujnhw7l9k0ktdds7qj7c5ujdtc6g03czyqw0csddad85zv4a4a6n558rdtjyaqs2shyw202wdgmjtzzhvtc5su9j97k In reply to <a href='/nevent1qqsf5y8edk6s4maf6f9hf3qys73yatw7jla6u9spfxmll7ttt6qayeqy2e88d'>nevent1q…e88d</a><br/>_________________________<br/><br/>I guess the economy is this: I&#39;m claiming that it&#39;s cheaper for a group of individuals to decap a single (multiple) off the shelf processors and confirm that they are trustworthy, than it is for giant fabs to make &#39;safe&#39; and &#39;backdoored&#39; version of the same IC, because making the lithography mask is a very expensive thing whose cost is amortized by chip sales 2025-04-02T23:09:42Z https://njump.me/nevent1qqsycl2qh3ltgzz9x2z5rxemr5f7vdwkylcg0fh3ggqn5rmhrpgamdczyqw0csddad85zv4a4a6n558rdtjyaqs2shyw202wdgmjtzzhvtc5s3hpyke In reply to <a href='/nevent1qqsfjn6yfqt7n59zcnl4mzwqkrnjhtfqtsqwd6cq9dq4d4y74ljvh2qty875e'>nevent1q…875e</a><br/>_________________________<br/><br/>The arms race you mentioned already begun. First they stop putting opcodes in the manual but then people found out by bruteforcing opcodes and seeing the change in register.<br/><br/>Clear plastic covering is out of the question. 1. Silicon chips are sensitive to light. There&#39;s an issue with early raspberry pi model where the board would reboot if someone took a flash photograph. 2. You can&#39;t resolve nanometer detail behind plastic casing.<br/><br/>It&#39;s expensive, but worth it imo. 2025-04-02T08:04:30Z https://njump.me/nevent1qqs2zj3wpnsjx2g43mstgalum5equkre90lf8duttpk674sa6f5khnszyqw0csddad85zv4a4a6n558rdtjyaqs2shyw202wdgmjtzzhvtc5slje2jd In reply to <a href='/nevent1qqspux8zx6x56zzmt05fmcda2k03jpz8vmwz0k3fwwgpf5g0yptucagyecag8'>nevent1q…cag8</a><br/>_________________________<br/><br/>the reason why cpus are not FPGAs are simply because FPGAs are larger, less effective, and pricier. It&#39;s like having a development board arduino instead of just the atmega chip.<br/><br/>If you don&#39;t believe in CPU manufacturers (not saying anyone should) and bootstrapping is difficult, maybe consider another route and have independent researchers decap a few ICs and see the microcode implementation, and see if there&#39;s any hidden rings or opcodes. 2025-04-01T13:07:19Z