Explore a groundbreaking Black Hat conference talk that delves into the vulnerabilities of hardware-enforced security mechanisms. Learn how hypervisors can be exploited to bypass Intel's Trusted Execution Environment (TXT) DRTM and capture keys from Intel's AES-NI instructions. Discover the limitations of trusted computing technologies like TXT, ARM TrustZone, Microsoft Isolated User Mode, and Intel SGX in protecting user data from privileged processes. Examine the implementation flaws in Intel TXT and the open-source tBoot project, and understand how Type-1 hypervisors can be used to exploit these weaknesses. Gain insights into proper deployment strategies for hardware-enforced security systems, including sealed storage, remote attestation, and hardware hardening techniques to mitigate potential vulnerabilities.
Overview
Syllabus
Breaking Hardware-Enforced Security With Hypervisors
Taught by
Black Hat