-
Notifications
You must be signed in to change notification settings - Fork 0
Edk_II_Security_White_Papers
Industry standard:
NIST: https://csrc.nist.gov/publications/sp800
TCG: http://trusted.computinggroup.com/
SideChannel: Intel Software Developer Zone -firmware speculative execution
General:
- uefi.org - Threat Modeling for Modern System FW.pdf (July 2013)
- A Tour Beyond BIOS - Security Design Guide in_EDK_II.pdf (Sept 2016)
- A Tour Beyond BIOS - Mitigate Buffer Overflow in UEFI - gitbook(April 2018)
- uefi.org - An Introduction to Platform Security (Spring 2018)
Memory Protection: A Tour Beyond BIOS – Memory Protection in UEFI BIOS - gitbook (March 2017)
SMM Protection:
- uefi.org - SMM Protection in EDK II (Spring 2017)
- A Tour Beyond BIOS Secure SMM Communication (April 2016)
DMA: firmware.intel.com - A Tour Beyond BIOS - Using IOMMU for DMA Protection in UEFI firmware (Oct 2017)
Capsule/Recovery: A Tour Beyond BIOS - Capsule Update and Recovery in EDK II (Dec 2016)
Variable:
- A Tour Beyond BIOS - Implementing UEFI Authenticated Variables in SMM with EDK II (Oct 2015)
- A Tour Beyond BIOS - Variable Extension For Confidentiality Annex (Nov 2016)
- A Tour Beyond BIOS - Variable Extension For Confidentiality (June 2016)
S3: A Tour Beyond BIOS - Implementing S3 Resume with EDK II (Oct 2015)
TPM2: firmware.intel.com - A Tour Beyond BIOS - with the UEFI TPM2 Support in EDK II (Sept 2014)
Profile: A Tour Beyond BIOS - Implementing Profiling in EDK_II (July 2016)
STM/VMM:
- firmware.intel.com - A Tour Beyond BIOS - Launching STM to Monitor SMM in EDK II (Aug 2015)
- firmware.intel.com - A Tour Beyond BIOS - Launching a VMM in EDK II (Oct 2015)
- firmware.intel.com - A Tour Beyond BIOS - Supporting SMM Resource Monitor using EDK II (June 2015)
StandaloneMM: firmware.intel.com - A Tour Beyond BIOS - Launching Standalone SMM Drivers in the PEI Phase using EDK II (May 2015)