Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Achilles Heel in Secure Boot: Breaking RSA Authentication and Bitstream Recovery from Zynq-7000 SoC

USENIX via YouTube

Overview

Learn about a critical security vulnerability in AMD-Xilinx's Zynq-7000 SoC secure boot implementation through this 22-minute conference talk from USENIX WOOT '24. Explore how researchers from Nanyang Technological University discovered a significant flaw in the First Stage Boot Loader that enables complete bypass of RSA authentication during secure boot. Understand the practical implications of this vulnerability, including how it allows malicious actors to execute unauthorized applications and perform 'Starbleed' attacks to recover encrypted bitstreams. Examine the technical details of this 10-year-old security flaw, its responsible disclosure process (CVE 2022/23822), and subsequent vendor patches. Gain insights into the importance of rigorous security evaluation tools for detecting critical vulnerabilities in embedded system software.

Syllabus

WOOT '24 - Achilles Heel in Secure Boot: Breaking RSA Authentication and Bitstream Recovery from...

Taught by

USENIX

Reviews

Start your review of Achilles Heel in Secure Boot: Breaking RSA Authentication and Bitstream Recovery from Zynq-7000 SoC

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.