Samsung Knox approved by US Department of Defense
2. Aploine (Posts: 307; Member since: 24 Oct 2013)
Don't be hasty, just got handed over to NSA
3. sprockkets (Posts: 1498; Member since: 16 Jan 2012)
Good luck with that. ARM's trusted zone CPUs use separate sections of privileged memory to store encryption keys and certificates that not even kernel root can touch.
The vulnerable parts of it can be hacked, but since there is such little to target, finding weaknesses is getting next to impossible.
5. mrblah (Posts: 554; Member since: 22 Jan 2013)
You have got to be the most naive person I have ever seen on here.
9. sprockkets (Posts: 1498; Member since: 16 Jan 2012)
3 years running now, and no one can defeat the signing of apple's ios on their iphones with the iphone4s and up. The most they can do is jailbreak temporarily.
"You have got to be the most naive person I have ever seen on here."
You are really shortsighted. If someone were to break trusted zone, that's means breaking RSA validation, aka, the web would be an insecure mess. Is that what you want?
Go ahead. Find a bootloader exploit for Motorola phones. Try it. They closed the only hole a year ago. Knox relies on a secure bootloader. And if it finds non signed code you are flagged and refused entry for your business apps.
12. jroc74 (Posts: 5258; Member since: 30 Dec 2010)
You had me at Motorola bootloader.
Yea, anything man made can be hacked...but some things are easier than others. If Moto didnt allow some phones bootloaders to be unlocked...we would still have messy work arounds for custom ROMs. Even then I dont think custom kernels were possible with the bootloader work around.
10. sprockkets (Posts: 1498; Member since: 16 Jan 2012)
Go ahead and read how it works. This is the guy who initially cracked moto's bootloader. No exploit found since.
6. The13thKing (banned) (Posts: 849; Member since: 26 Feb 2014)
h*ll yeah. get rid of those old squeaky blackberries.
7. 0xFFFF (Posts: 3806; Member since: 16 Apr 2014)
I wish Samsung had designed KNOX to be an option for the Department of Defense and not standard for the 95% of us who don't need it and/or don't want it.
11. wilsong17 (unregistered)
what are you talking about knox come preinstalled on the phone is your choice to activate or not
13. 0xFFFF (Posts: 3806; Member since: 16 Apr 2014)
FYI, Samsung locks down the bootloader on many of their KNOX phones, no matter if you activate/use the KNOX container or not.
Basically the "security package" should be something optional and available piecemeal. For example, maybe I want to use KNOX and root my phone. They should not be mutually exclusive as they are on many Samsung KNOX phones.
With a set of individual security options, The DoD can choose max security and others can choose what they want for their needs.