1. Home
2. Questions
3. Unanswered
4. AI Assist
5. Tags
7. Chat
8. Users
10. Companies
Stack Internal

Stack Overflow for Teams is now called Stack Internal. Bring the best of human thought and AI automation together at your work.
Try for free Learn more
Stack Internal
Bring the best of human thought and AI automation together at your work. Learn more

Return to Answer

Post Timeline

Source Link

answered May 4, 2017 at 18:45

1.1k
7
14

I'm not sure that this question can be totally answered, because as you point out, the line between hardware and software can be blurred in some areas, such as firmware or embedded systems. However, I would argue that something falls under hardware security if any of the following three conditions applies:

A flaw can be mitigated through physical security measures
A flaw exists in the actual hardware design, eg. side channel attacks against CPU cache in cloud environments are enabled by a shared CPU cache.
A flaw cannot be mitigated through firmware/software upgrade.