- Joined
- Mar 3, 2018
- Messages
- 1,713
Reuters reports that Supermicro is looking for spy chips on their motherboards. In a letter to customers, the manufacturer denies the allegations Bloomberg made over two weeks ago, claiming that such a device would be "technically implausible." There are safeguards in Supermicro's supply chain that should theoretically prevent such a security breach from happening. Supermicro claims they have already conducted an extensive review, and found no evidence to suggest such a device exists. But, in spite of that strong denial, Supermicro is still "undertaking a complicated and time-consuming review to further address the article." Everyone involved in the story is still vehemently denying it, and so far, no one else has independently corroborated Bloomberg's story.
Our motherboard designs are extremely complex. This complexity makes it practically impossible to insert a functional, unauthorized component onto a motherboard without it being caught by any one, or all, of the checks in our manufacturing and assembly process. The complex design of the underlying layers of the board also makes it highly unlikely that an unauthorized hardware component, or an altered board, would function properly. Our motherboard technology involves multiple layers of circuitry. It would be virtually impossible for a third party, during the manufacturing process, to install and power a hardware device that could communicate effectively with our Baseboard Management Controller because such a third party would lack complete knowledge (known as "pin-to-pin knowledge") of the design. These designs are trade secrets protected by Supermicro. The system is designed so that no single Supermicro employee, single team, or contractor has unrestricted access to the complete motherboard design (including hardware, software, and firmware).
Our motherboard designs are extremely complex. This complexity makes it practically impossible to insert a functional, unauthorized component onto a motherboard without it being caught by any one, or all, of the checks in our manufacturing and assembly process. The complex design of the underlying layers of the board also makes it highly unlikely that an unauthorized hardware component, or an altered board, would function properly. Our motherboard technology involves multiple layers of circuitry. It would be virtually impossible for a third party, during the manufacturing process, to install and power a hardware device that could communicate effectively with our Baseboard Management Controller because such a third party would lack complete knowledge (known as "pin-to-pin knowledge") of the design. These designs are trade secrets protected by Supermicro. The system is designed so that no single Supermicro employee, single team, or contractor has unrestricted access to the complete motherboard design (including hardware, software, and firmware).