Submitted on Sunday 9th October 2016
Published on Friday 14th October 2016
Current status: Closed
Closed: Friday 14th April 2017
Signatures: 8
Outlaw sale of electronics with firmware reflashing code that can be reflashed
For security, require electronic devices with "reflashable" or other alterable firmware to have the section of code that performs the reflashing, and one that correctly downloads the current reflashable firmware contents, stored in Read Only Memory that is electronically impossible to alter.
Cyber attacks against hardware have begun to take the form of reflashing attacks which modify the firmware of the targeted device.
If the device's capability to be reflashed can itself be removed or tampered with by reflashing, attack code can make itself undetectable and impossible to remove, requiring the entire electronic device to be thrown away.
The proposal would obstruct this form of attack as fixed unchangable code would exist allow reflashing and reporting of flash memory contents.
You can't sign this petition because it is now closed. But you can still comment on it here at Repetition.me!
18.227.52.248 Thu, 21 Nov 2024 14:27:44 +0000
