![](https://ccweb.imgix.net/https%3A%2F%2Fwww.classcentral.com%2Fimages%2Ficon-black-friday.png?auto=format&ixlib=php-4.1.0&s=fe56b83c82babb2f8fce47a2aed2f85d)
Modern Secure Boot Attacks - Alex Matrosov - Ekoparty Security Conference - 2019
Ekoparty Security Conference via YouTube
Overview
![](https://ccweb.imgix.net/https%3A%2F%2Fwww.classcentral.com%2Fimages%2Ficon-black-friday.png?auto=format&ixlib=php-4.1.0&s=fe56b83c82babb2f8fce47a2aed2f85d)
This course covers modern Secure Boot attacks, focusing on bypassing the hardware Root of Trust from software. The learning outcomes include understanding new security issues related to Intel Boot Guard technology, Embedded Controller (EC) with UEFI Firmware cooperation, and Authenticated Code Module (ACM) runtime environment. The course teaches skills to bypass specific implementations of security checks and explores vulnerabilities without physical access to the hardware. The teaching method involves a presentation by an experienced security researcher, making it suitable for individuals interested in offensive security, reverse engineering, firmware security, and exploitation techniques.
Syllabus
Introduction
What is Hardware Root of Trust
System Management Interface
Lenovo Driver
Compute Race
Permanent Disable
Embedded Controller
Hardware Root of Trust
Boot Guard Technology
Lenovo Boot Guard
Security by obscurity
Questions
Taught by
Ekoparty Security Conference