HPE iLO5 Firmware Security - Go Home Cryptoprocessor, You're Drunk!

Explore the security vulnerabilities of HPE Gen10 servers' Integrated Lights Out 5 (iLO 5) out-of-band management technology in this 35-minute Black Hat conference talk. Delve into the "silicon root of trust" feature and its implications for server security. Examine the challenges of relying on manufacturer-provided security measures when not designing custom hardware. Analyze the iLO5 chipset as both the first and last line of defense in server protection. Learn from security researchers Alexandre Gazet, Fabien Périgaud, and Joffrey Czarny as they present their findings on potential weaknesses in this critical server management component.