Explore modern Secure Boot attacks and techniques for bypassing hardware Root of Trust from software in this conference talk from Ekoparty 2019. Delve into the complexities of armoring Secure Boot by moving Root of Trust to hardware, and uncover the security issues that arise from the multiple layers of code between hardware and firmware. Examine a specific vulnerability in Intel Boot Guard technology that allows attackers to bypass security checks from the OS without physical hardware access. Learn about Embedded Controller (EC) cooperation with UEFI Firmware and the Authenticated Code Module (ACM) runtime environment. Gain insights into topics such as System Management Interface, Lenovo Driver, Compute Race, and Permanent Disable. Understand the concept of Hardware Root of Trust, Boot Guard Technology, and the potential pitfalls of security by obscurity in Lenovo Boot Guard implementations.
Modern Secure Boot Attacks - Alex Matrosov - Ekoparty Security Conference - 2019
Ekoparty Security Conference via YouTube
Overview
Syllabus
Introduction
What is Hardware Root of Trust
System Management Interface
Lenovo Driver
Compute Race
Permanent Disable
Embedded Controller
Hardware Root of Trust
Boot Guard Technology
Lenovo Boot Guard
Security by obscurity
Questions
Taught by
Ekoparty Security Conference
Related Courses
-
Breaking Through Another Side - Bypassing Firmware Security Boundaries from Embedded Controller
-
Bypassing Hardware-Based Trusted Boot Through x86 Downgrade
-
Project Cerberus: Hardware Root of Trust for Cloud Security
-
TOCTOU Attacks Against Secure Boot and BootGuard
-
The Advanced Threats Evolution- REsearchers Arm Race - Alex Matrosov - Ekoparty Security Conference - 2019
-
Intel Management Engine Deep Dive
