Originally posted by audi100quattro
View Post
If you wanted that isolation both x86 and ARM have IOMMU (Intell calls it VT-d), which isolates DMA peripherals to their own RAM allocation and does not allow them to look at something else.
Afaik most modern stuff is hacked from userspace, through Webkit vulnerabilities and then using kernel vulnerabilities, which in this case were found by looking at FreeBSD 9 ones as the PS4 is still a FreeBSD derivative https://cturt.github.io/ps4.html
The latest Switch hack was done by shorting pins because the Tegra's BootROM was still left default so it can be talked with by shorting its pins to boot something else. Before that it was hacked by exploiting Webkit. I'm not sure how using a SoC southbridge can protect you from that.
The PS4 also has a rest mode, which will only download games/updates and charge USB controllers. This is the Southbridge running with the APU off. 256MB RAM is enough to download to the HD.
Comment