evil maid just got angrier
play

Evil Maid Just Got Angrier Why Full-Disk Encryption With TPM is - PowerPoint PPT Presentation

Sep 23, 2023 •6 likes •906 views

Evil Maid Just Got Angrier Why Full-Disk Encryption With TPM is Insecure on Many Systems Yuriy Bulygin (@c7zero) CanSecWest 2013 Outline 1 UEFI BIOS Outline 1 UEFI BIOS 2 Measured/Trusted Boot Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The

  1. Evil Maid Just Got Angrier Why Full-Disk Encryption With TPM is Insecure on Many Systems Yuriy Bulygin (@c7zero) CanSecWest 2013

  3. Outline 1 UEFI BIOS

  4. Outline 1 UEFI BIOS 2 Measured/Trusted Boot

  5. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot

  6. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM

  7. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM 5 Secure Boot

  8. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM 5 Secure Boot 6 What Else?

  9. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM 5 Secure Boot 6 What Else? 7 Anything We Can Do?

  10. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM 5 Secure Boot 6 What Else? 7 Anything We Can Do?

  11. Legacy BIOS

  12. Legacy BIOS CPU Reset vector in ROM → legacy boot block Basic CPU, chipset initialization → Initialize Cache-as-RAM, load and run from cache → Initialize DIMMs, create address map.. → Enumerate PCIe devices.. → Execute Option ROMs on expansion cards Load and execute MBR → 2nd Stage Boot Loader / OS Loader → OS

  13. Legacy BIOS CPU Reset vector in ROM → legacy boot block Basic CPU, chipset initialization → Initialize Cache-as-RAM, load and run from cache → Initialize DIMMs, create address map.. → Enumerate PCIe devices.. → Execute Option ROMs on expansion cards Load and execute MBR → 2nd Stage Boot Loader / OS Loader → OS or a Full-Disk Encryption Application

  14. Legacy BIOS CPU Reset vector in ROM → legacy boot block Basic CPU, chipset initialization → Initialize Cache-as-RAM, load and run from cache → Initialize DIMMs, create address map.. → Enumerate PCIe devices.. → Execute Option ROMs on expansion cards Load and execute MBR → 2nd Stage Boot Loader / OS Loader → OS or a Full-Disk Encryption Application or a Bootkit

  15. Security of Legacy BIOS

  16. Security of Legacy BIOS Huh?

  17. Security of Legacy BIOS Huh? Old architecture Unsigned BIOS updates by user-mode applications Unsigned Option ROMs Unprotected configuration SMI Handlers.. have issues [18] No Secure Boot

  18. Unified Extensible Firmware Interface (UEFI) CPU reset vector in ROM → Startup/Security Phase (SEC) → Pre-EFI Initialization (PEI) Phase (chipset/CPU initialization) → Driver Execution Environment (DXE) Phase → OEM UEFI applications (diagnostics, update) → Boot Device Selection (BDS) Phase → UEFI Boot Manager OS Boot Manager / Loader or Built-in UEFI Shell

  19. Security of UEFI BIOS UEFI provides framework for signing UEFI binaries including native option ROMs Signed capsule update Framework for TCG measured (trusted) boot UEFI 2.3.1 defines secure (verified, authenticated) boot Protected configuration (authenticated variables, boot-time only..) SEC+PEI encapsulate security critical functions (recovery, TPM init, capsule update, configuration locking, SMRAM init/protection..)

  20. So is UEFI BIOS secure? UEFI specifies all needed pieces but it’s largely up to platform manufacturers to use them as well as protections offered by hardware

  21. So is UEFI BIOS secure? UEFI specifies all needed pieces but it’s largely up to platform manufacturers to use them as well as protections offered by hardware What good are your signed UEFI capsules if firmware ROM is writeable by everyone?

  22. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM 5 Secure Boot 6 What Else? 7 Anything We Can Do?

  23. Measured (Trusted) Boot Example: TPM Based Full-Disk Encryption Solutions Pre-OS firmware components are hashed ( measured ) Measurements are initiated by startup firmware ( Static CRTM ) Measurements are stored in a secure location (TPM PCRs) Secrets (encryption keys) are encrypted by the TPM and bounded to PCR measurements ( sealed ) Can only be decrypted ( unsealed ) with same PCR measurements stored in the TPM This chain guarantees that firmware hasn’t been tampered with

  24. Windows BitLocker http://technet.microsoft.com/en-us/library/ee449438(v=ws.10).aspx

  25. BitLocker with Trusted Platform Module Volume Key used to encrypt drive contents is encrypted by the TPM based on measurements of pre-OS firmware If any pre-OS firmware component was tampered with, TPM wouldn’t decrypt the key Ensures malicious BIOS/OROM/MBR doesn’t log the PIN or fake recovery/PIN screen Implementation of a Measured Boot

  26. Typical Chain of Measurements

  27. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector

  28. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS]

  29. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs

  30. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables

  31. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data

  32. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs]

  33. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration]

  34. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration] PCR[4 ] ← UEFI OS Loader, UEFI Applications [MBR]

  35. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration] PCR[4 ] ← UEFI OS Loader, UEFI Applications [MBR] PCR[5 ] ← EFI Variables, GUID Partition Table [MBR Partition Table]

  36. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration] PCR[4 ] ← UEFI OS Loader, UEFI Applications [MBR] PCR[5 ] ← EFI Variables, GUID Partition Table [MBR Partition Table] PCR[6 ] ← State Transitions and Wake Events

  37. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration] PCR[4 ] ← UEFI OS Loader, UEFI Applications [MBR] PCR[5 ] ← EFI Variables, GUID Partition Table [MBR Partition Table] PCR[6 ] ← State Transitions and Wake Events PCR[7 ] ← UEFI Secure Boot keys (PK/KEK) and variables (dbx..)

  38. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration] PCR[4 ] ← UEFI OS Loader, UEFI Applications [MBR] PCR[5 ] ← EFI Variables, GUID Partition Table [MBR Partition Table] PCR[6 ] ← State Transitions and Wake Events PCR[7 ] ← UEFI Secure Boot keys (PK/KEK) and variables (dbx..) PCR[8 ] ← TPM Aware OS specific hashes [NTFS Boot Sector]

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

evil maid on droids or why you should never loose your android smartphone @f0rki 2012-12-06

evil maid on droids or why you should never loose your android smartphone @f0rki 2012-12-06

evil maid on droids or why you should never loose your android smartphone @f0rki 2012-12-06 Agenda evil maids detour: the android boot process attack scenarios unrooted phones adb access rooted phones protecting yourself 2 / 51 Agenda

1.31k views • 85 slides
Even-Darker Art of Rails Engines @lazyatom github.com/lazyatom/engines Rails 2.3 history

Even-Darker Art of Rails Engines @lazyatom github.com/lazyatom/engines Rails 2.3 history

The Even-Darker Art of Rails Engines @lazyatom github.com/lazyatom/engines Rails 2.3 history November 2005 its distracting! reuse is overrated! Evil! Evil! Evil! Evil! Evil! Evil! Evil! Evil! Shit! eek! appable_plugins desert

972 views • 96 slides
DWDC Vancouver presents... MAID 101 Your presenter today is Connie Jorsvik , BSN, Independent

DWDC Vancouver presents... MAID 101 Your presenter today is Connie Jorsvik , BSN, Independent

DWDC Vancouver presents... MAID 101 Your presenter today is Connie Jorsvik , BSN, Independent Healthcare Navigator & Patient Advocate. The DWDC Vancouver MAID 101 Team: Dr. Sue Hughson Alex Muir Darrell Mahoney Susan

584 views • 44 slides
The true form of evil rarely looks evil on the surface, it seduces us with fair face as it

The true form of evil rarely looks evil on the surface, it seduces us with fair face as it

Webinar: Abortion & Conscientious Objection 2 July 2020 (Adv Keith Matthee SC) 1 As a nation we would be well advised to heed the words of Professor Forstchen in his review on the film Downfall, which exposes the evil of Adolf

490 views • 11 slides
Why MAID cases are different from a coordinator perspective Emily Evans Organ and Tissue

Why MAID cases are different from a coordinator perspective Emily Evans Organ and Tissue

Why MAID cases are different from a coordinator perspective Emily Evans Organ and Tissue Donation Coordinator Overview of Organ Donation Following MAID in Ontario 1 st physician confirmation of eligibility Notification to TGLN Consent for

798 views • 11 slides
Moral evil is a result of human action, whereas natural evil can only be blamed on God, if He

Moral evil is a result of human action, whereas natural evil can only be blamed on God, if He

Moral evil is a result of human action, whereas natural evil can only be blamed on God, if He even exists. Natural disasters and diseases seem at odds with a good and benevolent God. Try to remember, though, that God created this universe

462 views • 8 slides
THEODICY: The Problem of Evil .. Christian : Pastor Nathan Lewis Atheist : Bernie

THEODICY: The Problem of Evil .. Christian : Pastor Nathan Lewis Atheist : Bernie

THEODICY: The Problem of Evil .. Christian : Pastor Nathan Lewis Atheist : Bernie Dehler 4-22-12 What is the problem? (1 of 2) Q: If God is all-loving and all-powerful, why is there so much evil in the world? A: What evil are you

312 views • 15 slides
Unmasking Evil Revelation 13 Speaker: Gilbert van Bueren REVELATION 13 UNMASKING EVIL

Unmasking Evil Revelation 13 Speaker: Gilbert van Bueren REVELATION 13 UNMASKING EVIL

Revelation series nr.10: Unmasking Evil Revelation 13 Speaker: Gilbert van Bueren REVELATION 13 UNMASKING EVIL Series The Future has already Begun #10 IBC Eindhoven, 8 March 2020 UNMASKING THE DRAGON Revelation 12:9 and 20:2 1.

361 views • 14 slides
Pion photo- and electroproduction and the chiral MAID interface Stefan Scherer Institute for

Pion photo- and electroproduction and the chiral MAID interface Stefan Scherer Institute for

Pion photo- and electroproduction and the chiral MAID interface Stefan Scherer Institute for Nuclear Physics, Johannes Gutenberg University Mainz Uppsala University, 20 May 2016 work in collaboration with 1 Marius Hilt, Bj orn C. Lehnhart,

689 views • 52 slides
Parking Maid Overview and Objectives To design a smart parking robot that can detect empty

Parking Maid Overview and Objectives To design a smart parking robot that can detect empty

Parking Maid Overview and Objectives To design a smart parking robot that can detect empty parking space and park into the area automatically with FPGA control Functions that Robot can perform Move forward and backward Make

276 views • 9 slides
Natural Evil and the Mythology of J.R.R. Tolkien Keith B. Miller Department of Geology Kansas

Natural Evil and the Mythology of J.R.R. Tolkien Keith B. Miller Department of Geology Kansas

Natural Evil and the Mythology of J.R.R. Tolkien Keith B. Miller Department of Geology Kansas State University The Problem of Natural Evil and the Creative Imagination We must seriously engage the challenging theological questions that

756 views • 22 slides
Medical Assistance in Dying: Proposed Legislative Amendments (Bill 84) Stakeholder Presentation

Medical Assistance in Dying: Proposed Legislative Amendments (Bill 84) Stakeholder Presentation

Medical Assistance in Dying: Proposed Legislative Amendments (Bill 84) Stakeholder Presentation Ministry of Health and Long-Term Care December 9, 2016 MAID Overview Medical Assistance in Dying (MAID) is defined in recently enacted federal

283 views • 16 slides
DSCP and the Evil Bit Runa Barik (UiO), Michael Welzl (UiO), Ahmed Elmokashfi (SRL) maprg @96th

DSCP and the Evil Bit Runa Barik (UiO), Michael Welzl (UiO), Ahmed Elmokashfi (SRL) maprg @96th

DSCP and the Evil Bit Runa Barik (UiO), Michael Welzl (UiO), Ahmed Elmokashfi (SRL) maprg @96th IETF Meeting Berlin, Germany 18 th July 2015 IETF96 DSCP and the Evil Bit 1 / 14 Motivation The Internet could ideally use the IP header for

149 views • 14 slides
Andromeda: XSS Accurate and Scalable Security Attackers evil script Analysis of Web

Andromeda: XSS Accurate and Scalable Security Attackers evil script Analysis of Web

Andromeda: XSS Accurate and Scalable Security Attackers evil script Analysis of Web Applications Web Application <SCRIPT>...</SCRIPT> Attackers evil script executed using victims credentials Omer Tripp Marco

410 views • 6 slides
Wisdom Discerning between Good and Evil Goal scripture: Hebrews 5:11-14 Wisdom Discerning

Wisdom Discerning between Good and Evil Goal scripture: Hebrews 5:11-14 Wisdom Discerning

Wisdom Discerning between Good and Evil Goal scripture: Hebrews 5:11-14 Wisdom Discerning between Good and Evil My Focus Today New Series: Books of Wisdom Talk a little about what wisdom is Job Present Teaching Points Psalms on 2

484 views • 29 slides
A Poisonous Mouth

A Poisonous Mouth

A Poisonous Mouth Poisonous Mouth Deliver me, O Lord, from evil men; preserve me from violent men, who plan evil things in their heart and stir up wars continually. They

415 views • 15 slides
alife 2020 Localization, bistability and optimal seeding of contagions on higher-order networks

alife 2020 Localization, bistability and optimal seeding of contagions on higher-order networks

alife 2020 Localization, bistability and optimal seeding of contagions on higher-order networks Guillaume St-Onge , Antoine Allard, Laurent Hbert-Dufresne 2020/07/15 Dpartement de physique, de gnie physique, et doptique Universit

375 views • 14 slides
M&M: Masks and Macs against Physical Attacks CHES 2019 Lauren De Meyer, Victor Arribas

M&M: Masks and Macs against Physical Attacks CHES 2019 Lauren De Meyer, Victor Arribas

M&M: Masks and Macs against Physical Attacks CHES 2019 Lauren De Meyer, Victor Arribas Svetla Nikova, Ventzislav Nikov, Vincent Rijmen B ACK TO THE 90 S Differential Power Analysis (DPA) Paul Kocher et al. 1999 [KJJ99]

322 views • 28 slides
Statistical Methods for Infectious Diseases Post-infection Vaccine Effects, VE P M. Elizabeth

Statistical Methods for Infectious Diseases Post-infection Vaccine Effects, VE P M. Elizabeth

Outline VE P Binary: Pertussis Causal Effects Statistical Methods for Infectious Diseases Post-infection Vaccine Effects, VE P M. Elizabeth Halloran Fred Hutchinson Cancer Research Center and University of Washington Seattle, WA, USA March

666 views • 55 slides
OPTIPRIM-ANRS 147 Trial Optimization of Primary HIV Infection Treatment OPTIPRIM-ANRS 147: Study

OPTIPRIM-ANRS 147 Trial Optimization of Primary HIV Infection Treatment OPTIPRIM-ANRS 147: Study

Optimization of Primary HIV Infection Treatment OPTIPRIM-ANRS 147 Trial Optimization of Primary HIV Infection Treatment OPTIPRIM-ANRS 147: Study Design Study Design: OPTIPRIM-ANRS 147 Background : Open label, randomized, phase 3 trial

376 views • 6 slides
Introduction to Risk Management and a Just Culture Mary Coffey Safety in a Radiotherapy

Introduction to Risk Management and a Just Culture Mary Coffey Safety in a Radiotherapy

Introduction to Risk Management and a Just Culture Mary Coffey Safety in a Radiotherapy Department Delivery of the correct treatment to all patients in a safety aware environment Patient Staff Public Safety in a

1.17k views • 85 slides
Cyberwar: How Worried Should We Be? Austin ISSA Dr. Bill Young Department of Computer Science

Cyberwar: How Worried Should We Be? Austin ISSA Dr. Bill Young Department of Computer Science

Cyberwar: How Worried Should We Be? Austin ISSA Dr. Bill Young Department of Computer Science University of Texas at Austin Last updated: May 8, 2013 at 17:09 Dr. Bill Young: 1 Austin ISSA, May 9, 2013 From the Headlines Pentagon accuses

724 views • 34 slides
Congratulations to SNEB Award Winners Helen Denning Ullrich Award for Student Research Awards

Congratulations to SNEB Award Winners Helen Denning Ullrich Award for Student Research Awards

Congratulations to SNEB Award Winners Helen Denning Ullrich Award for Student Research Awards presented by the Lifetime Excellence in Higher Education Division Nutrition Education Yuka Asada, PhD, RD, University of Illinois at Chicago Carol

215 views • 5 slides
C - YA ! Philadelphias Plan to C onnect our C o - infected C ommunity to a C ure for Hep C ALEX

C - YA ! Philadelphias Plan to C onnect our C o - infected C ommunity to a C ure for Hep C ALEX

C - YA ! Philadelphias Plan to C onnect our C o - infected C ommunity to a C ure for Hep C ALEX SHIRREFFS, MPH NASTAD TA MEETING NOVEMBER 29, 2017 Agenda: Background C YA Project Activities Data and Evaluation Training and

505 views • 17 slides

More recommend