evil maid just got angrier
play

Evil Maid Just Got Angrier Why Full-Disk Encryption With TPM is - PowerPoint PPT Presentation

Sep 23, 2023 •6 likes •906 views

Evil Maid Just Got Angrier Why Full-Disk Encryption With TPM is Insecure on Many Systems Yuriy Bulygin (@c7zero) CanSecWest 2013 Outline 1 UEFI BIOS Outline 1 UEFI BIOS 2 Measured/Trusted Boot Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The

  1. Evil Maid Just Got Angrier Why Full-Disk Encryption With TPM is Insecure on Many Systems Yuriy Bulygin (@c7zero) CanSecWest 2013

  3. Outline 1 UEFI BIOS

  4. Outline 1 UEFI BIOS 2 Measured/Trusted Boot

  5. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot

  6. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM

  7. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM 5 Secure Boot

  8. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM 5 Secure Boot 6 What Else?

  9. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM 5 Secure Boot 6 What Else? 7 Anything We Can Do?

  10. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM 5 Secure Boot 6 What Else? 7 Anything We Can Do?

  11. Legacy BIOS

  12. Legacy BIOS CPU Reset vector in ROM → legacy boot block Basic CPU, chipset initialization → Initialize Cache-as-RAM, load and run from cache → Initialize DIMMs, create address map.. → Enumerate PCIe devices.. → Execute Option ROMs on expansion cards Load and execute MBR → 2nd Stage Boot Loader / OS Loader → OS

  13. Legacy BIOS CPU Reset vector in ROM → legacy boot block Basic CPU, chipset initialization → Initialize Cache-as-RAM, load and run from cache → Initialize DIMMs, create address map.. → Enumerate PCIe devices.. → Execute Option ROMs on expansion cards Load and execute MBR → 2nd Stage Boot Loader / OS Loader → OS or a Full-Disk Encryption Application

  14. Legacy BIOS CPU Reset vector in ROM → legacy boot block Basic CPU, chipset initialization → Initialize Cache-as-RAM, load and run from cache → Initialize DIMMs, create address map.. → Enumerate PCIe devices.. → Execute Option ROMs on expansion cards Load and execute MBR → 2nd Stage Boot Loader / OS Loader → OS or a Full-Disk Encryption Application or a Bootkit

  15. Security of Legacy BIOS

  16. Security of Legacy BIOS Huh?

  17. Security of Legacy BIOS Huh? Old architecture Unsigned BIOS updates by user-mode applications Unsigned Option ROMs Unprotected configuration SMI Handlers.. have issues [18] No Secure Boot

  18. Unified Extensible Firmware Interface (UEFI) CPU reset vector in ROM → Startup/Security Phase (SEC) → Pre-EFI Initialization (PEI) Phase (chipset/CPU initialization) → Driver Execution Environment (DXE) Phase → OEM UEFI applications (diagnostics, update) → Boot Device Selection (BDS) Phase → UEFI Boot Manager OS Boot Manager / Loader or Built-in UEFI Shell

  19. Security of UEFI BIOS UEFI provides framework for signing UEFI binaries including native option ROMs Signed capsule update Framework for TCG measured (trusted) boot UEFI 2.3.1 defines secure (verified, authenticated) boot Protected configuration (authenticated variables, boot-time only..) SEC+PEI encapsulate security critical functions (recovery, TPM init, capsule update, configuration locking, SMRAM init/protection..)

  20. So is UEFI BIOS secure? UEFI specifies all needed pieces but it’s largely up to platform manufacturers to use them as well as protections offered by hardware

  21. So is UEFI BIOS secure? UEFI specifies all needed pieces but it’s largely up to platform manufacturers to use them as well as protections offered by hardware What good are your signed UEFI capsules if firmware ROM is writeable by everyone?

  22. Outline 1 UEFI BIOS 2 Measured/Trusted Boot 3 The Real World: Bypassing Measured/Trusted Boot 4 Windows BitLocker with TPM 5 Secure Boot 6 What Else? 7 Anything We Can Do?

  23. Measured (Trusted) Boot Example: TPM Based Full-Disk Encryption Solutions Pre-OS firmware components are hashed ( measured ) Measurements are initiated by startup firmware ( Static CRTM ) Measurements are stored in a secure location (TPM PCRs) Secrets (encryption keys) are encrypted by the TPM and bounded to PCR measurements ( sealed ) Can only be decrypted ( unsealed ) with same PCR measurements stored in the TPM This chain guarantees that firmware hasn’t been tampered with

  24. Windows BitLocker http://technet.microsoft.com/en-us/library/ee449438(v=ws.10).aspx

  25. BitLocker with Trusted Platform Module Volume Key used to encrypt drive contents is encrypted by the TPM based on measurements of pre-OS firmware If any pre-OS firmware component was tampered with, TPM wouldn’t decrypt the key Ensures malicious BIOS/OROM/MBR doesn’t log the PIN or fake recovery/PIN screen Implementation of a Measured Boot

  26. Typical Chain of Measurements

  27. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector

  28. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS]

  29. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs

  30. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables

  31. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data

  32. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs]

  33. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration]

  34. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration] PCR[4 ] ← UEFI OS Loader, UEFI Applications [MBR]

  35. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration] PCR[4 ] ← UEFI OS Loader, UEFI Applications [MBR] PCR[5 ] ← EFI Variables, GUID Partition Table [MBR Partition Table]

  36. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration] PCR[4 ] ← UEFI OS Loader, UEFI Applications [MBR] PCR[5 ] ← EFI Variables, GUID Partition Table [MBR Partition Table] PCR[6 ] ← State Transitions and Wake Events

  37. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration] PCR[4 ] ← UEFI OS Loader, UEFI Applications [MBR] PCR[5 ] ← EFI Variables, GUID Partition Table [MBR Partition Table] PCR[6 ] ← State Transitions and Wake Events PCR[7 ] ← UEFI Secure Boot keys (PK/KEK) and variables (dbx..)

  38. Typical Chain of Measurements ⊗ Initial startup FW at CPU reset vector PCR[0 ] ← CRTM, UEFI Firmware, PEI/DXE [BIOS] տ UEFI Boot and Runtime Services, Embedded EFI OROMs տ SMI Handlers, Static ACPI Tables PCR[1 ] ← SMBIOS, ACPI Tables, Platform Configuration Data PCR[2 ] ← EFI Drivers from Expansion Cards [Option ROMs] PCR[3 ] ← [Option ROM Data and Configuration] PCR[4 ] ← UEFI OS Loader, UEFI Applications [MBR] PCR[5 ] ← EFI Variables, GUID Partition Table [MBR Partition Table] PCR[6 ] ← State Transitions and Wake Events PCR[7 ] ← UEFI Secure Boot keys (PK/KEK) and variables (dbx..) PCR[8 ] ← TPM Aware OS specific hashes [NTFS Boot Sector]

Recommend

evil maid on droids or why you should never loose your android smartphone @f0rki 2012-12-06

evil maid on droids or why you should never loose your android smartphone @f0rki 2012-12-06

evil maid on droids or why you should never loose your android smartphone @f0rki 2012-12-06 Agenda evil maids detour: the android boot process attack scenarios unrooted phones adb access rooted phones protecting yourself 2 / 51 Agenda

1.31k views • 85 slides
Even-Darker Art of Rails Engines @lazyatom github.com/lazyatom/engines Rails 2.3 history

Even-Darker Art of Rails Engines @lazyatom github.com/lazyatom/engines Rails 2.3 history

The Even-Darker Art of Rails Engines @lazyatom github.com/lazyatom/engines Rails 2.3 history November 2005 its distracting! reuse is overrated! Evil! Evil! Evil! Evil! Evil! Evil! Evil! Evil! Shit! eek! appable_plugins desert

972 views • 96 slides
DWDC Vancouver presents... MAID 101 Your presenter today is Connie Jorsvik , BSN, Independent

DWDC Vancouver presents... MAID 101 Your presenter today is Connie Jorsvik , BSN, Independent

DWDC Vancouver presents... MAID 101 Your presenter today is Connie Jorsvik , BSN, Independent Healthcare Navigator & Patient Advocate. The DWDC Vancouver MAID 101 Team: Dr. Sue Hughson Alex Muir Darrell Mahoney Susan

584 views • 44 slides
The true form of evil rarely looks evil on the surface, it seduces us with fair face as it

The true form of evil rarely looks evil on the surface, it seduces us with fair face as it

Webinar: Abortion & Conscientious Objection 2 July 2020 (Adv Keith Matthee SC) 1 As a nation we would be well advised to heed the words of Professor Forstchen in his review on the film Downfall, which exposes the evil of Adolf

490 views • 11 slides
Why MAID cases are different from a coordinator perspective Emily Evans Organ and Tissue

Why MAID cases are different from a coordinator perspective Emily Evans Organ and Tissue

Why MAID cases are different from a coordinator perspective Emily Evans Organ and Tissue Donation Coordinator Overview of Organ Donation Following MAID in Ontario 1 st physician confirmation of eligibility Notification to TGLN Consent for

798 views • 11 slides
Moral evil is a result of human action, whereas natural evil can only be blamed on God, if He

Moral evil is a result of human action, whereas natural evil can only be blamed on God, if He

Moral evil is a result of human action, whereas natural evil can only be blamed on God, if He even exists. Natural disasters and diseases seem at odds with a good and benevolent God. Try to remember, though, that God created this universe

462 views • 8 slides
THEODICY: The Problem of Evil .. Christian : Pastor Nathan Lewis Atheist : Bernie

THEODICY: The Problem of Evil .. Christian : Pastor Nathan Lewis Atheist : Bernie

THEODICY: The Problem of Evil .. Christian : Pastor Nathan Lewis Atheist : Bernie Dehler 4-22-12 What is the problem? (1 of 2) Q: If God is all-loving and all-powerful, why is there so much evil in the world? A: What evil are you

312 views • 15 slides
Unmasking Evil Revelation 13 Speaker: Gilbert van Bueren REVELATION 13 UNMASKING EVIL

Unmasking Evil Revelation 13 Speaker: Gilbert van Bueren REVELATION 13 UNMASKING EVIL

Revelation series nr.10: Unmasking Evil Revelation 13 Speaker: Gilbert van Bueren REVELATION 13 UNMASKING EVIL Series The Future has already Begun #10 IBC Eindhoven, 8 March 2020 UNMASKING THE DRAGON Revelation 12:9 and 20:2 1.

361 views • 14 slides
Pion photo- and electroproduction and the chiral MAID interface Stefan Scherer Institute for

Pion photo- and electroproduction and the chiral MAID interface Stefan Scherer Institute for

Pion photo- and electroproduction and the chiral MAID interface Stefan Scherer Institute for Nuclear Physics, Johannes Gutenberg University Mainz Uppsala University, 20 May 2016 work in collaboration with 1 Marius Hilt, Bj orn C. Lehnhart,

689 views • 52 slides
Parking Maid Overview and Objectives To design a smart parking robot that can detect empty

Parking Maid Overview and Objectives To design a smart parking robot that can detect empty

Parking Maid Overview and Objectives To design a smart parking robot that can detect empty parking space and park into the area automatically with FPGA control Functions that Robot can perform Move forward and backward Make

276 views • 9 slides
Natural Evil and the Mythology of J.R.R. Tolkien Keith B. Miller Department of Geology Kansas

Natural Evil and the Mythology of J.R.R. Tolkien Keith B. Miller Department of Geology Kansas

Natural Evil and the Mythology of J.R.R. Tolkien Keith B. Miller Department of Geology Kansas State University The Problem of Natural Evil and the Creative Imagination We must seriously engage the challenging theological questions that

756 views • 22 slides
Medical Assistance in Dying: Proposed Legislative Amendments (Bill 84) Stakeholder Presentation

Medical Assistance in Dying: Proposed Legislative Amendments (Bill 84) Stakeholder Presentation

Medical Assistance in Dying: Proposed Legislative Amendments (Bill 84) Stakeholder Presentation Ministry of Health and Long-Term Care December 9, 2016 MAID Overview Medical Assistance in Dying (MAID) is defined in recently enacted federal

283 views • 16 slides
DSCP and the Evil Bit Runa Barik (UiO), Michael Welzl (UiO), Ahmed Elmokashfi (SRL) maprg @96th

DSCP and the Evil Bit Runa Barik (UiO), Michael Welzl (UiO), Ahmed Elmokashfi (SRL) maprg @96th

DSCP and the Evil Bit Runa Barik (UiO), Michael Welzl (UiO), Ahmed Elmokashfi (SRL) maprg @96th IETF Meeting Berlin, Germany 18 th July 2015 IETF96 DSCP and the Evil Bit 1 / 14 Motivation The Internet could ideally use the IP header for

149 views • 14 slides
Andromeda: XSS Accurate and Scalable Security Attackers evil script Analysis of Web

Andromeda: XSS Accurate and Scalable Security Attackers evil script Analysis of Web

Andromeda: XSS Accurate and Scalable Security Attackers evil script Analysis of Web Applications Web Application <SCRIPT>...</SCRIPT> Attackers evil script executed using victims credentials Omer Tripp Marco

410 views • 6 slides
Wisdom Discerning between Good and Evil Goal scripture: Hebrews 5:11-14 Wisdom Discerning

Wisdom Discerning between Good and Evil Goal scripture: Hebrews 5:11-14 Wisdom Discerning

Wisdom Discerning between Good and Evil Goal scripture: Hebrews 5:11-14 Wisdom Discerning between Good and Evil My Focus Today New Series: Books of Wisdom Talk a little about what wisdom is Job Present Teaching Points Psalms on 2

484 views • 29 slides
A Poisonous Mouth

A Poisonous Mouth

A Poisonous Mouth Poisonous Mouth Deliver me, O Lord, from evil men; preserve me from violent men, who plan evil things in their heart and stir up wars continually. They

415 views • 15 slides
Thursday. Shafiq Woon Abdullah admitted in a Singapore court that the physically abused

Thursday. Shafiq Woon Abdullah admitted in a Singapore court that the physically abused

Contoh : Man Jailed for Striking RI Maid SINGAPORE A man was jailed for two months for repeatedly striking his Indonesian maid, news reports said on Thursday. Shafiq Woon Abdullah admitted in a Singapore court that the physically abused

404 views • 7 slides
Passage of Bill 84, Medical Assistance in Dying Statute Law Amendment Act, 2017 Webinar Technical

Passage of Bill 84, Medical Assistance in Dying Statute Law Amendment Act, 2017 Webinar Technical

Passage of Bill 84, Medical Assistance in Dying Statute Law Amendment Act, 2017 Webinar Technical Briefing Ministry of Health and Long-Term Care May 16, 2017 MAID Overview Medical Assistance in Dying (MAID) is defined in federal

679 views • 25 slides
6/24/2014 1 6/24/2014 Theory of Retribution Good will be rewarded and Evil will be punished

6/24/2014 1 6/24/2014 Theory of Retribution Good will be rewarded and Evil will be punished

6/24/2014 1 6/24/2014 Theory of Retribution Good will be rewarded and Evil will be punished Book of Job challenges this theory We are shocked when Good suffer and the Evil are rewarded We want to make God is predicable We know how God will

583 views • 6 slides
Presentation Town of Yates February 12, 2015 Glenn Maid 10367 Chaffee Lane - Fire Lane 65

Presentation Town of Yates February 12, 2015 Glenn Maid 10367 Chaffee Lane - Fire Lane 65

Presentation Town of Yates February 12, 2015 Glenn Maid 10367 Chaffee Lane - Fire Lane 65 (PO Box 31 Lyndonville) Yates, NY 14098 The intent of this presentation is to be informative, persuasive, and for the benefit of the Board and

323 views • 10 slides
0 The evil that men do lives after them. Julius Caesar , by William Shakespeare 0 Where I

0 The evil that men do lives after them. Julius Caesar , by William Shakespeare 0 Where I

Temporal Logic: The Lesser of Three Evils Leslie Lamport Microsoft Research 0 The evil that men do lives after them. Julius Caesar , by William Shakespeare 0 Where I Started Making sure my concurrent algorithms were right. Proving the

1.49k views • 112 slides
The intention of mans heart is evil from his youth. Proverbs 6:16-18a (NIV) There

The intention of mans heart is evil from his youth. Proverbs 6:16-18a (NIV) There

Genesis 8:21 (NIV) The intention of mans heart is evil from his youth. Proverbs 6:16-18a (NIV) There are six things the Lord hates, seven that are detestable to him: 17 haughty eyes, a lying tongue, hands that shed innocent blood,

365 views • 25 slides
delights in wickedness; evil may not dwell with you. 5 The boastful shall not stand before your

delights in wickedness; evil may not dwell with you. 5 The boastful shall not stand before your

Worship Leader: 4 For you are not a God who delights in wickedness; evil may not dwell with you. 5 The boastful shall not stand before your eyes; you hate all evildoers. ALL: 6 You destroy those who speak lies; the LORD abhors the bloodthirsty

470 views • 32 slides
Is SAFe Evil? Henrik Kniberg Lars Roost Hi! Lars Roost Henrik Kniberg Program Manager &

Is SAFe Evil? Henrik Kniberg Lars Roost Hi! Lars Roost Henrik Kniberg Program Manager &

Is SAFe Evil? Henrik Kniberg Lars Roost Hi! Lars Roost Henrik Kniberg Program Manager & Agile/Lean coach Agile Change Agent Is SAFe Evil? It depends.... Is SAFe Evil? No. To Tools ls, to , tools ls, to , tools ls Henrik Kniberg

643 views • 52 slides

More recommend