What Would it Take to Enable Global Firmware Vulnerability Checking & Integrity Checking?

Xeno Kovah, Corey Kallenberg, John Butterworth, Sam Cornwell
October, 2014

Abstract

A Microsoft-targeted discussion of what they could do to improve the state of firmware security, e.g. by performing vulnerability and integrity checking within their customer base. Unfortunately neither Microsoft nor MITRE ever published this presentation. (And of course Microsoft never implemented the idea.)

Type
Conference paper
Publication
In Microsoft BlueHat (invite-only at the time), 2014
firmware security BIOS security firmware integrity verification firmware vulnerability assessment
Xeno Kovah
Xeno Kovah
Dark Mentor Level X

Hacking firmware like it’s no big deal.