YoVDO

Service Processor Privilege Isolation and Getting Caught with Your Pants Down

Offered By: linux.conf.au via YouTube

Tags

linux.conf.au Courses Cybersecurity Courses Hardware Security Courses Server Management Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the security vulnerabilities of modern server Baseboard Management Controllers (BMCs) in this 40-minute conference talk from linux.conf.au. Delve into the world of service processor privilege isolation and learn about the potential risks associated with BMC hardware designs and firmware. Discover methods for gaining complete persistent control of BMCs using various hardware features, and understand the importance of separating management and workload security domains in cloud and dedicated server environments. Gain insights into recent research on BMC ecosystems and the exploitation of software flaws in existing firmware implementations. Follow the presentation's structure, covering topics such as Open BMC, firmware interfaces, BMC threat models, LPC interface configuration, and a comprehensive summary of findings.

Syllabus

Intro
Open BMC
Firmware
Interfaces
BMC
Threat Model
LPC Interface
Configuration
Summary


Taught by

linux.conf.au

Related Courses

The Open-Source Chatbot That Accidentally Built a Community
linux.conf.au via YouTube Add Depth - Stereoscopic Imagery for Everyone
linux.conf.au via YouTube Becoming a Tyrant - Implementing Secure Boot in Embedded Devices
linux.conf.au via YouTube The seL4 Foundation - Growing Through Upheaval
linux.conf.au via YouTube Conference Close
linux.conf.au via YouTube