Collaborate Disseminate
I’m running on a Linux Embedded product and U-Boot Bootloader.
I enabled the Secure Boot Chain of Trust, from ROM to Kernel + DM-verity and DM-Crypt partition protection.
Now I’m worried about the U-Boot Environment Variable.
The AES U-Boo… Continue reading U-Boot hardening – how manage U-Boot Environment Variables
I noticed that when the secure boot options is disabled on a Bitlocker enabled Windows laptop with TPM, in order to boot into a forensic live OS like Kali in Forensic Mode or Parrot OS that the TPM is not cleared at least on some HP laptop… Continue reading Are there any known BIOS that clear a TPM on disabling secure boot?
Eclypsium warns that Palo Alto Networks firewalls are impacted by BIOS and bootloader flaws, but the vendor says users should not be concerned.
The post Palo Alto Networks Addresses Impact of BIOS, Bootloader Vulnerabilities on Its Firewalls appeared f… Continue reading Palo Alto Networks Addresses Impact of BIOS, Bootloader Vulnerabilities on Its Firewalls
My Dell XPS 9310 has secure boot enabled and the BIOS is up to date and there are no manual keys added there.
Can I download a ubuntu .ISO from anywhere and flash into any computer without worrying about malwares? Will it boot the USB driv… Continue reading Do I need to verify a .ISO before flashing, if my laptop has secure boot?
I have searched online, but have not been able to find anything about this.
I understand the PKFail can compromise the boot process by allowing a signed key to sign malware to insert into the UEFI, and I can understand that this can compro… Continue reading Does Bitlocker provide a degree of protection from PKFail?
A vulnerability dubbed PKfail can allow attackers to run malicious code during the boot process, which can be used to deliver UEFI bootkits.
The post PKfail Vulnerability Allows Secure Boot Bypass on Hundreds of Computer Models appeared first on Secur… Continue reading PKfail Vulnerability Allows Secure Boot Bypass on Hundreds of Computer Models
SecureBoot uses a PKI path to verify particular signed bootloader binaries before it runs these binaries. This PKI, as far as I understand, is basically owned by Microsoft, meaning that only Microsoft can sign binaries that will run on Sec… Continue reading Is the ability to use Machine Owner Keys effectively a bypass of SecureBoot security?
Are PUFs used, EVERY time we power on the computer, to verify that nothing have been tampered (by using CRP authentication)?
Which element performs this authentication? (bios, secureboot, I don’t know)?
Where are CRPs stored? In which ele… Continue reading Is EVERY time we power on the computer verified that nothing have been tampered via PUF CRP authentication? By which component? Where are CRPs stored?
Are PUFs used, EVERY time we power on the computer to verify that nothing has been tampered with (by using CRP authentication)?
Which element performs this authentication? (bios, secureboot, I don’t know)?
Where are CRPs stored? In which … Continue reading Is PUF Challenge-Response Authentication applied on every power-up event? [closed]
Apologies if any of these questions have been answered previously. Also, apologies for the sheer number of questions asked here. I’ve done some digging, and have been unable to find a good resource that goes into a little more depth on how… Continue reading The Boot Process – Sequence of Events, Boot Integrity Checks, and BitLocker OS Volume Encryption