Betraying the BIOS: Where the Guardians of the BIOS are Failing

by Alex Matrosov
Sept. 14, 2017 1 comment BIOS

In this presentation, I'll explain UEFI security from the competing perspectives of attacker and defender. I'll cover topics including how hardware vendors have left SMM and SPI flash memory wide open to rootkits; how UEFI rootkits work, how technologies such as Intel Boot Guard and BIOS Guard (and the separate Authenticated Code Module CPU) aim to kill them; and weaknesses in these protective technologies. There are few public details; most of this information has been extracted by reverse engineering.

Steven Ulm 8 months ago

"The Guardians of the BIOS" is probably the most epic thing I've ever read in a title :)