TOPIC: Boot Integrity

(video for titles in light text is in progress. Please check back later.)

PSEC2018 Videos & Slides

1. Brian Delgado, Intel/PSU — EPA-RIMM: A Framework for Dynamic SMM-based Runtime Integrity Measurement
2. Daniel DeGraaf, NSA — Extending Early-boot Trust to Service VMs in Xen
3. Trammell Hudson, Two Sigma Investments — Firmware is the new Software
4. Justin Johnson, Dell — Dell Firmware Security: Past, Present, and Future
5. Brendan Kerrigan, AIS — Anti-Evil Maid with UEFI and Xen
6. Daniel Kiper, Oracle — UEFI Secure Boot, Shim and Xen
7. Eugene Myers, NSA — STM/PE and XHIM
8. Ian Pratt, Bromium — Hypervisor Security : Lessons Learned
9. Daniel Smith, Apertus Solutions — TrenchBoot: Unified Approach to Harness Boot Integrity Technologies
10. Philip Tricca, Intel — TPM 2.0 Software Stack: Usability, Privacy and Security
11. Vincent Zimmer, Intel — Open-Source Host Firmware Directions

Ecosystem

• Rich Persaud, In Device We Trust: TXT measured launch with TPM 2.0 and OTA update (2017)
• Qubes OS: Installing and Using Anti Evil Maid (AEM) · AEM enhancements (2017)
• Purism laptops: Boot and BIOS (2018)
• PSEC2018 References: Microsoft Windows Hyper-V System Guard
• PSEC2018 References: Firmware Resiliency and Device Attestation

Source Code

• Heads
• LinuxBoot
• OpenXT measured launch with forward seal
• OpenEmbedded meta-measured Layer
• QubesOS AEM

Related Topics: OpenXT Xen