Locked Down but Not Out: Fighting the Hidden War in Your Bootloader
Unknown
Black Hat USA 2024 · Day 1 · Briefing
In this insightful Black Hat USA presentation, Bill Demirkapa, Emerging Threats Lead at the Microsoft Security Response Center, shed light on the critical state of Secure Boot security. The talk, titled "Locked Down but Not Out: Fighting the Hidden War in Your Bootloader," delved into the intricacies of the Unified Extensible Firmware Interface (UEFI) Secure Boot mechanism, Microsoft's ongoing efforts to enhance its security, and the significant challenges that necessitate a fundamental re-evaluation of its architecture. Demirkapa, leveraging his background in cloud security and low-level OS internals, emphasized that while Secure Boot is a vital security feature, it faces systemic issues that leave boot environments vulnerable to sophisticated attackers.