Let's talk about firmware security
SoC:
Microcode
IFWI
USB 3.0
EC
Intel GbE
TPM
CPU
SB
BIOS
1. Microcode
2. Intel TXT (DRTM)
3. Intel SGX
4. Intel Boot Guard
4. Intel ME/SPS/IFWI
5. Intel TXT
6. iTPM
7. SMM
8. TPM (SRTM)
SMU / SB
HMAC
Key
https://www.youtube.com/watch?v=iYvhHey_dTk
ME / SB
https://github.com/corna/me_cleaner
Manifest
Code Module 1
Code Module 2
Code Module 3
Symmetric Cryptography
Key extracted via a bug.
Asymmetric Cryptography with signed modules but load order isn't verified
1980
Today
64KB
512KB
2MB
8MB
512MB
Nor flash ROM
size increases over time!
source: orwl.org
TPM 1.2
source: infineon.com
TPM 2.0
source: infineon.com
TPM 1.2:
TPM 2.0:
source: macronix.com
source: wikipedia.org
VBoot + TPM
TPM only
www.tpmtool.org
www.tpmtool.org
TPM Manufacturer: STMicroelectronics TPM spec: 1.2 TPM owned: true TPM activated: true TPM enabled: true TPM temporary deactivated: false
Read Only
source: heise.de,
https://github.com/corna/me_cleaner
https://github.com/chipsec/chipsec
Task:
What you need:
15min
Steps
Task:
What you need:
60min
Steps
Steps:
What you need:
45min