Can internal PinePhone firmware be compromised?
#1
Perhaps a stupid question. Is there any firmware in PinePhone which could be compromised by the OS? For example, I heard that a compromised OS on a laptop can compromise BIOS, which makes the computer insecure without recurse (and you won't know it unless you have Anti Evil Maid).

Let's say I install some untrusted OS on the eMMC, use it, then wipe it. After that I boot from a trusted microSD, can I be sure that I am not compromised?

I am also thinking about such a use case: I have untrusted OS on the eMMC, where I collect all the viruses I want. When I need to do something security-critical (e.g., open my email), I insert a microSD with a bootable trusted OS, use it and then remove the microSD again returning to the initial untrusted OS. Would such access to the email be secure?
#2
All software available to the public can be compromised, and unless it's something almost nobody uses, all software will be compromised at some point in time.
Privacy, security, and freedom is never ethernal, and it's never a gift.
Both the consumer and developer have to fight for it forever.
#3
The firmware in the Quectel modem can be changed and therefore it can also be corrupted.

I have not heard of any way how the bootloader could be compromised?
If that is not the case, eMMC always can be cleaned.
#4
(11-18-2020, 02:16 PM)fsflover Wrote: Let's say I install some untrusted OS on the eMMC, use it, then wipe it. After that I boot from a trusted microSD, can I be sure that I am not compromised?

Unlike regular computers, ARM systems have all the bios-y info stored on the emmc/sdcard, as @LinAdmin2 pointed out the modem has it's own firmware,  but that can be reflashed as well.
#5
Would there be a way to lock down modem firmware with a dip switch seems like a major target
owo notices your distro.
#6
(11-18-2020, 06:07 PM)evilbunny Wrote:
(11-18-2020, 02:16 PM)fsflover Wrote: Let's say I install some untrusted OS on the eMMC, use it, then wipe it. After that I boot from a trusted microSD, can I be sure that I am not compromised?

Unlike regular computers, ARM systems have all the bios-y info stored on the emmc/sdcard,
Wrong;
The ARM system must have some initial loader to start reading from eMMc or sd.card.
#7
(11-19-2020, 11:03 AM)LinAdmin2 Wrote:
(11-18-2020, 06:07 PM)evilbunny Wrote:
(11-18-2020, 02:16 PM)fsflover Wrote: Let's say I install some untrusted OS on the eMMC, use it, then wipe it. After that I boot from a trusted microSD, can I be sure that I am not compromised?

Unlike regular computers, ARM systems have all the bios-y info stored on the emmc/sdcard,
Wrong;
The ARM system must have some initial loader to start reading from eMMc or sd.card.

I'm led to believe boot is hard coded into the chip. The rest is on emmc/sdcard.
#8
https://linux-sunxi.org/Pine64#Boot_sequence
https://linux-sunxi.org/BROM#A64


Possibly Related Threads…
Thread Author Replies Views Last Post
  PinePhone - boot from microSD laserpyramid 5 299 03-06-2024, 06:37 PM
Last Post: aular
  Are you using the Pinephone as your daily driver? jro 157 105,096 02-18-2024, 11:33 PM
Last Post: aular
  2020 PinePhone Manjaro CE EU for sale, name your price astrojuanlu 7 1,523 02-14-2024, 04:51 PM
Last Post: astrojuanlu
  pinephone is not bootble for the box. ijij 1 460 01-19-2024, 01:29 PM
Last Post: fxc
  Multiple issues with the Pinephone MTXP 12 1,938 12-28-2023, 07:55 AM
Last Post: MTXP
  pinephone repair shop shengchieh 0 382 12-26-2023, 02:42 PM
Last Post: shengchieh
  sudo nano file saving pinephone beta edition CharlesGnarley 4 1,479 12-22-2023, 03:44 PM
Last Post: Kevin Kofler
  Can't get Mobian on PinePhone to recognise USB-C docking bar duncan_bayne 9 6,601 12-04-2023, 02:14 AM
Last Post: Peter Gamma
  Pinephone not booting, always vibrating alexander12 7 4,668 11-22-2023, 06:46 PM
Last Post: Scary Guy
  Pinephone on Verizon chachi 3 992 10-09-2023, 11:26 AM
Last Post: alaraajavamma

Forum Jump:


Users browsing this thread: 2 Guest(s)