2018-09-12 –, Security
Researchers from Intel's Platform Armoring and Resiliency team will walk through the evolution of various firmware threat models as a result of the low-level skill advancement of software and hardware adversaries. In response, TianoCore added new in the UEFI Development Kit 2018 (UDK2018) release, along with enhancing existing security features.
This session provides real-world examples of several attack classes along with effective mitigation techniques against them. Topics include an introduction to platform security, an update on changes to the UEFI threat model, and a walkthrough of a critical Unified Extensible Firmware Interface (UEFI) security features (ex: HTTPS boot, pre-boot DMA protection using VT-d, guard page protection for potential stack/heap overflows).
Maggie Jauregui is a Security Researcher for the Platform Armoring and Resiliency team at Intel Corporation. Maggie focuses on firmware security. She has presented her research at conferences such as DEF CON, CanSecWest, DerbyCon, Grace Hopper, BSidesPDX, and UEFI Plugfest.
Brian Richardson is Technical Evangelist & Senior Technical Marketing Engineer at Intel.
He has spent most of his career as a “BIOS guy,” working on the firmware that quietly boots billions of computers. He has focused on the industry transition to the Unified Extensible Firmware Interface (UEFI) and supporting the TianoCore open source community. Brian has presented at various conferences and seminars, including LinuxCon and Embedded Systems Conference. When he’s not talking about firmware at conferences, Brian takes photos of his travels and procrastinates on various video projects.
- CHIPSEC on non-UEFI Platforms
- Building Open Source Unified Extensible Firmware Interface (UEFI) Firmware with EFI Development Kit II (EDK II)
- Debugging Unified Extensible Firmware Interface (UEFI) Firmware under Linux
- Writing CHIPSEC Modules & Tools
- Implementing MicroPython as an Unified Extensible Firmware Interface (UEFI) Test Framework
Erik Bjorge is a Firmware Engineer working in the Platform Armoring and Resiliency team at Intel Corporation. Erik has been developing system firmware at Intel since 2000. Erik is also a contributor and one of the maintainers of the CHIPSEC open source project https://github.com/chipsec/chipsec. Erik has also presented at the 2018 UEFI Plugfest on firmware security.