YoVDO

TOCTOU Attacks Against Secure Boot and BootGuard

Offered By: Hack In The Box Security Conference via YouTube

Tags

Hack In The Box Security Conference Courses Supply Chain Attacks Courses Secure Boot Courses Firmware Security Courses

Course Description

Overview

Explore TOCTOU attacks against Secure Boot and BootGuard in this Hack In The Box Security Conference talk. Dive into the vulnerabilities of Intel CPUs' BootGuard Verified Boot mode, the core root of trust during the boot process. Learn about errors in firmware volume handling and a new technique for altering firmware post-signature check. Discover how to construct an affordable open-source tool for investigating these Time-of-Check-Time-of-Use (TOCTOU) techniques and apply it to test your own systems' security. Cover topics including HDMI issues, BootGuard overview, free software community concerns, logic analyzer usage, data logging, improved proof of concept, board management controller implications, supply chain attack risks, Intel's response, firmware patches, and the importance of open-source firmware. Gain insights into the complexities of secure boot processes and the ongoing challenges in maintaining a robust chain of trust in modern computing systems.

Syllabus

Introduction
HDMI Issues
BootGuard
Overview
Free Software Community
What Could Go Wrong
Logic Analyzer
Data Log
SetCore
Summary
Trammell
Improved proof of concept
Trammell setup
Board management controller
Supply chain attack
Intel response
Firmware patches
The Fix
Open Source Firmware
Questions


Taught by

Hack In The Box Security Conference

Related Courses

Browser Hacking With ANGLE
Hack In The Box Security Conference via YouTube
Can A Fuzzer Match A Human
Hack In The Box Security Conference via YouTube
Biometrics System Hacking in the Age of the Smart Vehicle
Hack In The Box Security Conference via YouTube
ICEFALL - Revisiting A Decade Of OT Insecure-By-Design Practices
Hack In The Box Security Conference via YouTube
Fuzzing the MCU of Connected Vehicles for Security and Safety
Hack In The Box Security Conference via YouTube