Building Secure Firmware. Armoring the Foundation of the Platform

Книга "Building Secure Firmware. Armoring the Foundation of the Platform". Part 1: Overview Chapter 1: Introduction SecurityThreat ModelDesignValidation Chapter 2: Introduction Host FirmwareIndustry StandardBoot Flow / Phase hand-offMinimal Firmware RequirementHardware ROTCPU/silicon initPCI resource allocation.prepare platform info (memmap/ACPI)Jump to OS.Runtime Interface (SMM, UEFI Runtime, ASL)General Principle - Protect / Detect / Recovery Part 2: Boot Security Chapter 3: Firmware Resilience - Protection Flash LockFlash Wear outCapsule Flow (*)Signed Update Chapter 4: Firmware Resilience - Detection Boot Flow (*)Intel Boot GuardOBB VerificationUEFI Secure BootLocalRemoteTXT- SX(coreboot) Chapter 5: Firmware Resilience - Recovery Recovery Flow (*)Signed RecoveryTop SwapRollback, SVNs Chapter 6: OS/Loader Resilience Platform RecoveryOS Recovery(Android Verified Boot) Chapter 7: Trusted Boot Measured Boot Flow (*)SRTM (Boot Guard)DRTM (TXT)[link]/2.0Physical PresenceMOR / Secure ...