TOPIC: Boot Integrity
(video for titles in light text is in progress. Please check back later.)
PSEC2018 Videos & Slides
- Brian Delgado, Intel/PSU — EPA-RIMM: A Framework for Dynamic SMM-based Runtime Integrity Measurement
- Daniel DeGraaf, NSA — Extending Early-boot Trust to Service VMs in Xen
- Trammell Hudson, Two Sigma Investments — Firmware is the new Software
- Justin Johnson, Dell — Dell Firmware Security: Past, Present, and Future
- Brendan Kerrigan, AIS — Anti-Evil Maid with UEFI and Xen
- Daniel Kiper, Oracle — UEFI Secure Boot, Shim and Xen
- Eugene Myers, NSA — STM/PE and XHIM
- Ian Pratt, Bromium — Hypervisor Security : Lessons Learned
- Daniel Smith, Apertus Solutions — TrenchBoot: Unified Approach to Harness Boot Integrity Technologies
- Philip Tricca, Intel — TPM 2.0 Software Stack: Usability, Privacy and Security
- Vincent Zimmer, Intel — Open-Source Host Firmware Directions
Ecosystem
- Rich Persaud, In Device We Trust: TXT measured launch with TPM 2.0 and OTA update (2017)
- Qubes OS: Installing and Using Anti Evil Maid (AEM) · AEM enhancements (2017)
- Purism laptops: Boot and BIOS (2018)
- PSEC2018 References: Microsoft Windows Hyper-V System Guard
- PSEC2018 References: Firmware Resiliency and Device Attestation
Source Code
- Heads
- LinuxBoot
- OpenXT measured launch with forward seal
- OpenEmbedded meta-measured Layer
- QubesOS AEM