Palo Alto Networks Addresses Impact of BIOS, Bootloader Vulnerabilities on Its Firewalls

Eclypsium warns that Palo Alto Networks firewalls are impacted by BIOS and bootloader flaws, but the vendor says users should not be concerned.
The post Palo Alto Networks Addresses Impact of BIOS, Bootloader Vulnerabilities on Its Firewalls appeared f… Continue reading Palo Alto Networks Addresses Impact of BIOS, Bootloader Vulnerabilities on Its Firewalls

PKfail Vulnerability Allows Secure Boot Bypass on Hundreds of Computer Models 

A vulnerability dubbed PKfail can allow attackers to run malicious code during the boot process, which can be used to deliver UEFI bootkits.
The post PKfail Vulnerability Allows Secure Boot Bypass on Hundreds of Computer Models  appeared first on Secur… Continue reading PKfail Vulnerability Allows Secure Boot Bypass on Hundreds of Computer Models 

Is the ability to use Machine Owner Keys effectively a bypass of SecureBoot security?

SecureBoot uses a PKI path to verify particular signed bootloader binaries before it runs these binaries. This PKI, as far as I understand, is basically owned by Microsoft, meaning that only Microsoft can sign binaries that will run on Sec… Continue reading Is the ability to use Machine Owner Keys effectively a bypass of SecureBoot security?

Is EVERY time we power on the computer verified that nothing have been tampered via PUF CRP authentication? By which component? Where are CRPs stored?

Are PUFs used, EVERY time we power on the computer, to verify that nothing have been tampered (by using CRP authentication)?
Which element performs this authentication? (bios, secureboot, I don’t know)?
Where are CRPs stored? In which ele… Continue reading Is EVERY time we power on the computer verified that nothing have been tampered via PUF CRP authentication? By which component? Where are CRPs stored?

Is PUF Challenge-Response Authentication applied on every power-up event? [closed]

Are PUFs used, EVERY time we power on the computer to verify that nothing has been tampered with (by using CRP authentication)?
Which element performs this authentication? (bios, secureboot, I don’t know)?
Where are CRPs stored? In which … Continue reading Is PUF Challenge-Response Authentication applied on every power-up event? [closed]

The Boot Process – Sequence of Events, Boot Integrity Checks, and BitLocker OS Volume Encryption

Apologies if any of these questions have been answered previously. Also, apologies for the sheer number of questions asked here. I’ve done some digging, and have been unable to find a good resource that goes into a little more depth on how… Continue reading The Boot Process – Sequence of Events, Boot Integrity Checks, and BitLocker OS Volume Encryption