Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Modern Secure Boot Attacks - Alex Matrosov - Ekoparty Security Conference - 2019

Ekoparty Security Conference via YouTube

Overview

Explore modern Secure Boot attacks and techniques for bypassing hardware Root of Trust from software in this conference talk from Ekoparty 2019. Delve into the complexities of armoring Secure Boot by moving Root of Trust to hardware, and uncover the security issues that arise from the multiple layers of code between hardware and firmware. Examine a specific vulnerability in Intel Boot Guard technology that allows attackers to bypass security checks from the OS without physical hardware access. Learn about Embedded Controller (EC) cooperation with UEFI Firmware and the Authenticated Code Module (ACM) runtime environment. Gain insights into topics such as System Management Interface, Lenovo Driver, Compute Race, and Permanent Disable. Understand the concept of Hardware Root of Trust, Boot Guard Technology, and the potential pitfalls of security by obscurity in Lenovo Boot Guard implementations.

Syllabus

Introduction
What is Hardware Root of Trust
System Management Interface
Lenovo Driver
Compute Race
Permanent Disable
Embedded Controller
Hardware Root of Trust
Boot Guard Technology
Lenovo Boot Guard
Security by obscurity
Questions

Taught by

Ekoparty Security Conference

Reviews

Start your review of Modern Secure Boot Attacks - Alex Matrosov - Ekoparty Security Conference - 2019

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.