Re: [PATCH 07/11] kexec: Disable in a secure boot environment

From: Matthew Garrett
Date: Wed Sep 05 2012 - 11:46:55 EST

Next message: Rob Clark: "Re: [Patch 0/1]drm_irq: Introducing the irq_thread support"
Previous message: David Ahern: "Re: [PATCH 08/11] perf tool: precise mode requires exclude_guest"
In reply to: Roland Eggner: "Re: [PATCH 07/11] kexec: Disable in a secure boot environment"
Next in thread: Mimi Zohar: "Re: [PATCH 07/11] kexec: Disable in a secure boot environment"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Wed, Sep 05, 2012 at 05:43:08PM +0200, Roland Eggner wrote:

> Jonathan Brossard: ââ We have built a generic proof of concept malware for the
> Intel architecture, called 'Rakshasa', capable of infecting more than 100
> different motherboards. Targets are BIOS and firmware of PCI-devices. ââ
> http://www.toucan-system.com/research/blackhat2012_brossard_hardware_backdooring.pdf

Neatly avoided by the relevant UEFI platforms requiring that all
firmware be signed.

--
Matthew Garrett | mjg59@xxxxxxxxxxxxx
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Rob Clark: "Re: [Patch 0/1]drm_irq: Introducing the irq_thread support"
Previous message: David Ahern: "Re: [PATCH 08/11] perf tool: precise mode requires exclude_guest"
In reply to: Roland Eggner: "Re: [PATCH 07/11] kexec: Disable in a secure boot environment"
Next in thread: Mimi Zohar: "Re: [PATCH 07/11] kexec: Disable in a secure boot environment"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]