Copernicus 2: SENTER the Dragon!

Xeno Kovah, Corey Kallenberg, John Butterworth, Sam Cornwell
March, 2014
Cite Slides (PDF) Smiteem defeating BIOS reading tools demo video Copernicus 2 demo video

Abstract

Discussion of how a SMM MitM attacker (“Smite’em”) can subvert all software-based BIOS capture utilities (including our own Copernicus). Proposed the use of Intel Trusted Execution Technology (TXT) to improve the trustworthiness of the BIOS capture mechanism due to implicit SMI suppression & capability for remote attestation. (Later it was determine that newer hardware doesn’t suppress SMIs. See “SENTER Sandman”.)

Type
Conference paper
Publication
In CanSecWest 2014

Unfortunately CanSecWest never posted the conference video for this.

firmware security BIOS security BIOS attack firmware integrity verification firmware vulnerability assessment secure boot attack
Xeno Kovah
Xeno Kovah
Dark Mentor Level X

Hacking firmware like it’s no big deal.