Analysis of the Security of UEFI BIOS Embedded Software in Modern Intel-Based Computers

I. D. Pankov; A. S. Konoplev; A. Yu. Chernov

doi:10.3103/S0146411619080224

Analysis of the Security of UEFI BIOS Embedded Software in Modern Intel-Based Computers

Authors: Pankov I.D.¹, Konoplev A.S.¹, Chernov A.Y.¹
Affiliations:
1. Peter the Great Polytechnic University
Issue: Vol 53, No 8 (2019)
Pages: 865-869
Section: Article
URL: https://journal-vniispk.ru/0146-4116/article/view/175951
DOI: https://doi.org/10.3103/S0146411619080224
ID: 175951

Cite item

Full Text

Open Access
Restricted Access

Access granted
Restricted Access

Subscription Access

Abstract
About the authors
References
Supplementary files
Statistics

Abstract

The paper presents an overview of current attacks on BIOS and Intel ME embedded software of modern Intel-based computers. We describe the results of the analysis of its security for system boards of basic manufacturers. We also allocate classes of attacks that make it possible to create implants whose discovery by traditional methods of searching for undeclared features becomes impossible or extremely difficult.

Keywords

trusted computing environment, embedded software, UEFI BIOS, Intel ME, undeclared features, analysis of security, vulnerabilities

About the authors

I. D. Pankov

Peter the Great Polytechnic University

Email: chernov@ibks.spbstu.ru
Russian Federation, St. Petersburg, 195251

A. S. Konoplev

Peter the Great Polytechnic University

Author for correspondence.
Email: konoplev@ibks.spbstu.ru
Russian Federation, St. Petersburg, 195251

A. Yu. Chernov

Peter the Great Polytechnic University

Author for correspondence.
Email: chernov@ibks.spbstu.ru
Russian Federation, St. Petersburg, 195251

Supplementary files

Supplementary Files

Action

1. JATS XML

Download

Username
Password
Remember me

Forgot password?	Register

Username
Password
Remember me

Forgot password?	Register